CVE-2020-11506

Опубликовано: 22 апр. 2020

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure (Exposure of Sensitive Information) via request smuggling.

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
eoan	DNE
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	needs-triage
xenial	not-affected	code not present

Показывать по

Ссылки на источники

EPSS

Процентиль: 21%

0.00067

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2020-11506

CVSS3: 7.5

nvd

почти 6 лет назад

An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure (Exposure of Sensitive Information) via request smuggling.

CVE-2020-11506

CVSS3: 7.5

debian

почти 6 лет назад

An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A W ...

GHSA-fp74-7pjv-fqcj

github

больше 3 лет назад

An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure (Exposure of Sensitive Information) via request smuggling.

EPSS

Процентиль: 21%

0.00067

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2020-11506

Описание

Пакет gitlab

Ссылки на источники

Связанные уязвимости