exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5 336

CVE-2020-13298

больше 5 лет назад

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2 ...

CVSS3: 7.2

EPSS: Низкий

CVE-2020-13297

больше 5 лет назад

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. When 2 factor authentication was enabled for groups, a malicious user could bypass that restriction by sending a specific query to the API endpoint.

CVSS3: 3.8

EPSS: Низкий

CVE-2020-13297

больше 5 лет назад

CVSS3: 3.8

EPSS: Низкий

CVE-2020-13297

больше 5 лет назад

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2 ...

CVSS3: 3.8

EPSS: Низкий

CVE-2020-13296

больше 5 лет назад

An issue has been discovered in GitLab affecting versions >=10.7 <13.0.14, >=13.1.0 <13.1.8, >=13.2.0 <13.2.6. Improper Access Control for Deploy Tokens

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13296

больше 5 лет назад

An issue has been discovered in GitLab affecting versions >=10.7 <13.0.14, >=13.1.0 <13.1.8, >=13.2.0 <13.2.6. Improper Access Control for Deploy Tokens

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13296

больше 5 лет назад

An issue has been discovered in GitLab affecting versions >=10.7 <13.0 ...

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13294

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not revoked when a user revoked access to an application.

CVSS3: 4.2

EPSS: Низкий

CVE-2020-13294

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not revoked when a user revoked access to an application.

CVSS3: 4.2

EPSS: Низкий

CVE-2020-13294

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not re ...

CVSS3: 4.2

EPSS: Низкий

CVE-2020-13293

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override an existing hash.

CVSS3: 6.3

EPSS: Низкий

CVE-2020-13293

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override an existing hash.

CVSS3: 6.3

EPSS: Низкий

CVE-2020-13293

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexa ...

CVSS3: 6.3

EPSS: Низкий

CVE-2020-13292

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is required for OAuth Flow.

CVSS3: 9.6

EPSS: Низкий

CVE-2020-13292

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is required for OAuth Flow.

CVSS3: 9.6

EPSS: Низкий

CVE-2020-13292

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass ...

CVSS3: 9.6

EPSS: Низкий

CVE-2020-13291

больше 5 лет назад

In GitLab before 13.2.3, project sharing could temporarily allow too permissive access.

CVSS3: 8.1

EPSS: Низкий

CVE-2020-13291

больше 5 лет назад

In GitLab before 13.2.3, project sharing could temporarily allow too permissive access.

CVSS3: 8.1

EPSS: Низкий

CVE-2020-13291

больше 5 лет назад

In GitLab before 13.2.3, project sharing could temporarily allow too p ...

CVSS3: 8.1

EPSS: Низкий

CVE-2020-13290

больше 5 лет назад

In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-13298 A vulnerability was discovered in GitLab versions before 13.1.10, 13.2 ...	CVSS3: 7.2	0% Низкий	больше 5 лет назад
CVE-2020-13297 A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. When 2 factor authentication was enabled for groups, a malicious user could bypass that restriction by sending a specific query to the API endpoint.	CVSS3: 3.8	0% Низкий	больше 5 лет назад
CVE-2020-13297 A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. When 2 factor authentication was enabled for groups, a malicious user could bypass that restriction by sending a specific query to the API endpoint.	CVSS3: 3.8	0% Низкий	больше 5 лет назад
CVE-2020-13297 A vulnerability was discovered in GitLab versions before 13.1.10, 13.2 ...	CVSS3: 3.8	0% Низкий	больше 5 лет назад
CVE-2020-13296 An issue has been discovered in GitLab affecting versions >=10.7 <13.0.14, >=13.1.0 <13.1.8, >=13.2.0 <13.2.6. Improper Access Control for Deploy Tokens	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13296 An issue has been discovered in GitLab affecting versions >=10.7 <13.0.14, >=13.1.0 <13.1.8, >=13.2.0 <13.2.6. Improper Access Control for Deploy Tokens	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13296 An issue has been discovered in GitLab affecting versions >=10.7 <13.0 ...	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13294 In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not revoked when a user revoked access to an application.	CVSS3: 4.2	0% Низкий	больше 5 лет назад
CVE-2020-13294 In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not revoked when a user revoked access to an application.	CVSS3: 4.2	0% Низкий	больше 5 лет назад
CVE-2020-13294 In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not re ...	CVSS3: 4.2	0% Низкий	больше 5 лет назад
CVE-2020-13293 In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override an existing hash.	CVSS3: 6.3	0% Низкий	больше 5 лет назад
CVE-2020-13293 In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override an existing hash.	CVSS3: 6.3	0% Низкий	больше 5 лет назад
CVE-2020-13293 In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexa ...	CVSS3: 6.3	0% Низкий	больше 5 лет назад
CVE-2020-13292 In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is required for OAuth Flow.	CVSS3: 9.6	0% Низкий	больше 5 лет назад
CVE-2020-13292 In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is required for OAuth Flow.	CVSS3: 9.6	0% Низкий	больше 5 лет назад
CVE-2020-13292 In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass ...	CVSS3: 9.6	0% Низкий	больше 5 лет назад
CVE-2020-13291 In GitLab before 13.2.3, project sharing could temporarily allow too permissive access.	CVSS3: 8.1	0% Низкий	больше 5 лет назад
CVE-2020-13291 In GitLab before 13.2.3, project sharing could temporarily allow too permissive access.	CVSS3: 8.1	0% Низкий	больше 5 лет назад
CVE-2020-13291 In GitLab before 13.2.3, project sharing could temporarily allow too p ...	CVSS3: 8.1	0% Низкий	больше 5 лет назад
CVE-2020-13290 In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page	CVSS3: 7.5	0% Низкий	больше 5 лет назад

Уязвимостей на страницу