Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.

Релизный цикл, информация об уязвимостях

Продукт: Gitlab

Вендор: gitlab

График релизов

Недавние уязвимости Gitlab

Количество 5 336

CVE-2020-13282

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occur ...

CVSS3: 3.1

EPSS: Низкий

CVE-2020-13280

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13280

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exi ...

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13282

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access.

CVSS3: 3.1

EPSS: Низкий

CVE-2020-13285

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting (XSS) vulnerability exists in the issue reference number tooltip.

CVSS3: 7.3

EPSS: Низкий

CVE-2020-13280

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13283

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title.

CVSS3: 7.3

EPSS: Низкий

CVE-2020-13291

больше 5 лет назад

In GitLab before 13.2.3, project sharing could temporarily allow too permissive access.

CVSS3: 8.1

EPSS: Низкий

CVE-2020-13291

больше 5 лет назад

In GitLab before 13.2.3, project sharing could temporarily allow too p ...

CVSS3: 8.1

EPSS: Низкий

CVE-2020-13290

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2020-13282 For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occur ...	CVSS3: 3.1	0% Низкий	больше 5 лет назад
CVE-2020-13280 For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13280 For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exi ...	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13282 For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access.	CVSS3: 3.1	0% Низкий	больше 5 лет назад
CVE-2020-13285 For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting (XSS) vulnerability exists in the issue reference number tooltip.	CVSS3: 7.3	0% Низкий	больше 5 лет назад
CVE-2020-13280 For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13283 For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title.	CVSS3: 7.3	0% Низкий	больше 5 лет назад
CVE-2020-13291 In GitLab before 13.2.3, project sharing could temporarily allow too permissive access.	CVSS3: 8.1	0% Низкий	больше 5 лет назад
CVE-2020-13291 In GitLab before 13.2.3, project sharing could temporarily allow too p ...	CVSS3: 8.1	0% Низкий	больше 5 лет назад
CVE-2020-13290 In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page	CVSS3: 7.5	0% Низкий	больше 5 лет назад

Уязвимостей на страницу