exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5 544

CVE-2020-13277

почти 6 лет назад

An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5

CVSS3: 6.3

EPSS: Низкий

CVE-2020-13277

почти 6 лет назад

An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5

CVSS3: 6.3

EPSS: Низкий

CVE-2020-13277

почти 6 лет назад

An authorization issue in the mirroring logic allowed read access to p ...

CVSS3: 6.3

EPSS: Низкий

CVE-2020-13276

почти 6 лет назад

User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1

CVSS3: 7.4

EPSS: Низкий

CVE-2020-13276

почти 6 лет назад

User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1

CVSS3: 7.4

EPSS: Низкий

CVE-2020-13276

почти 6 лет назад

User is allowed to set an email as a notification email even without v ...

CVSS3: 7.4

EPSS: Низкий

CVE-2020-13275

почти 6 лет назад

A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1

CVSS3: 8

EPSS: Низкий

CVE-2020-13275

почти 6 лет назад

A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1

CVSS3: 8

EPSS: Низкий

CVE-2020-13275

почти 6 лет назад

A user with an unverified email address could request an access to dom ...

CVSS3: 8

EPSS: Низкий

CVE-2020-13274

почти 6 лет назад

A security issue allowed achieving Denial of Service attacks through memory exhaustion by uploading malicious artifacts in all previous GitLab versions through 13.0.1

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13274

почти 6 лет назад

A security issue allowed achieving Denial of Service attacks through memory exhaustion by uploading malicious artifacts in all previous GitLab versions through 13.0.1

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13274

почти 6 лет назад

A security issue allowed achieving Denial of Service attacks through m ...

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13273

почти 6 лет назад

A Denial of Service vulnerability allowed exhausting the system resources in GitLab CE/EE 12.0 and later through 13.0.1

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13273

почти 6 лет назад

A Denial of Service vulnerability allowed exhausting the system resources in GitLab CE/EE 12.0 and later through 13.0.1

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13273

почти 6 лет назад

A Denial of Service vulnerability allowed exhausting the system resour ...

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13272

почти 6 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13272

почти 6 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13272

почти 6 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13 ...

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13271

почти 6 лет назад

A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1

CVSS3: 6.1

EPSS: Низкий

CVE-2020-13271

почти 6 лет назад

A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-13277 An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5	CVSS3: 6.3	5% Низкий	почти 6 лет назад
CVE-2020-13277 An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5	CVSS3: 6.3	5% Низкий	почти 6 лет назад
CVE-2020-13277 An authorization issue in the mirroring logic allowed read access to p ...	CVSS3: 6.3	5% Низкий	почти 6 лет назад
CVE-2020-13276 User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1	CVSS3: 7.4	0% Низкий	почти 6 лет назад
CVE-2020-13276 User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1	CVSS3: 7.4	0% Низкий	почти 6 лет назад
CVE-2020-13276 User is allowed to set an email as a notification email even without v ...	CVSS3: 7.4	0% Низкий	почти 6 лет назад
CVE-2020-13275 A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1	CVSS3: 8	0% Низкий	почти 6 лет назад
CVE-2020-13275 A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1	CVSS3: 8	0% Низкий	почти 6 лет назад
CVE-2020-13275 A user with an unverified email address could request an access to dom ...	CVSS3: 8	0% Низкий	почти 6 лет назад
CVE-2020-13274 A security issue allowed achieving Denial of Service attacks through memory exhaustion by uploading malicious artifacts in all previous GitLab versions through 13.0.1	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-13274 A security issue allowed achieving Denial of Service attacks through memory exhaustion by uploading malicious artifacts in all previous GitLab versions through 13.0.1	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-13274 A security issue allowed achieving Denial of Service attacks through m ...	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-13273 A Denial of Service vulnerability allowed exhausting the system resources in GitLab CE/EE 12.0 and later through 13.0.1	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-13273 A Denial of Service vulnerability allowed exhausting the system resources in GitLab CE/EE 12.0 and later through 13.0.1	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-13273 A Denial of Service vulnerability allowed exhausting the system resour ...	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-13272 OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-13272 OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-13272 OAuth flow missing verification checks CE/EE 12.3 and later through 13 ...	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-13271 A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-13271 A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1	CVSS3: 6.1	0% Низкий	почти 6 лет назад

Уязвимостей на страницу