CVE-2020-13286

Опубликовано: 13 авг. 2020

Источник: ubuntu

Приоритет: medium

CVSS2: 4

CVSS3: 6.4

Описание

For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configuration settings can be modified to result in Server Side Request Forgery.

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	not-affected	debian: Only affects GitLab 12.7 and later

Показывать по

4 Medium

CVSS2

6.4 Medium

CVSS3

CVE-2020-13286

CVSS3: 6.4

nvd

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configuration settings can be modified to result in Server Side Request Forgery.

CVE-2020-13286

CVSS3: 6.4

debian

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configur ...

GHSA-59q4-w53p-6vq9

github

больше 3 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configuration settings can be modified to result in Server Side Request Forgery.

4 Medium

CVSS2

6.4 Medium

CVSS3