CVE-2020-10081

Опубликовано: 13 мар. 2020

Источник: ubuntu

Приоритет: medium

CVSS2: 4

CVSS3: 6.5

Описание

GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user.

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
eoan	DNE
esm-apps/xenial	ignored	not maintainable
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
groovy	DNE
hirsute	DNE
impish	DNE

Показывать по

Ссылки на источники

4 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2020-10081

CVSS3: 6.5

nvd

почти 6 лет назад

GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user.

CVE-2020-10081

CVSS3: 6.5

debian

почти 6 лет назад

GitLab before 12.8.2 has Incorrect Access Control. It was internally d ...

GHSA-2jcr-4r89-72r6

github

больше 3 лет назад

GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user.

4 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2020-10081

Описание

Пакет gitlab

Ссылки на источники

Связанные уязвимости