Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.
Релизный цикл, информация об уязвимостях
График релизов
Количество 5 336
CVE-2020-13263
An authorization issue relating to project maintainer impersonation wa ...
CVE-2020-13261
Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source code
CVE-2020-13261
Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later throu ...
CVE-2020-13261
Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source code
CVE-2020-13264
Kubernetes cluster token disclosure in GitLab CE/EE 10.3 and later through 13.0.1 allows other group maintainers to view Kubernetes cluster token
CVE-2020-13263
An authorization issue relating to project maintainer impersonation was identified in GitLab EE 9.5 and later through 13.0.1 that could allow unauthorized users to impersonate as a maintainer to perform limited actions.
CVE-2020-13276
User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1
CVE-2020-13276
User is allowed to set an email as a notification email even without v ...
CVE-2020-13275
A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1
CVE-2020-13275
A user with an unverified email address could request an access to dom ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2020-13263 An authorization issue relating to project maintainer impersonation wa ... | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
 | CVE-2020-13261 Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source code | CVSS3: 5.3 | 0% Низкий | больше 5 лет назад |
| CVE-2020-13261 Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later throu ... | CVSS3: 5.3 | 0% Низкий | больше 5 лет назад |
 | CVE-2020-13261 Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source code | CVSS3: 5.3 | 0% Низкий | больше 5 лет назад |
| CVE-2020-13264 Kubernetes cluster token disclosure in GitLab CE/EE 10.3 and later through 13.0.1 allows other group maintainers to view Kubernetes cluster token | CVSS3: 5.3 | 0% Низкий | больше 5 лет назад |
| CVE-2020-13263 An authorization issue relating to project maintainer impersonation was identified in GitLab EE 9.5 and later through 13.0.1 that could allow unauthorized users to impersonate as a maintainer to perform limited actions. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| CVE-2020-13276 User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1 | CVSS3: 7.4 | 0% Низкий | больше 5 лет назад |
| CVE-2020-13276 User is allowed to set an email as a notification email even without v ... | CVSS3: 7.4 | 0% Низкий | больше 5 лет назад |
| CVE-2020-13275 A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1 | CVSS3: 8 | 0% Низкий | больше 5 лет назад |
| CVE-2020-13275 A user with an unverified email address could request an access to dom ... | CVSS3: 8 | 0% Низкий | больше 5 лет назад |
Уязвимостей на страницу