exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2020-13344

больше 5 лет назад

An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Sessions keys are stored in plain-text in Redis which allows attacker with Redis access to authenticate as any user that has a session stored in Redis

CVSS3: 5.7

EPSS: Низкий

CVE-2020-13344

больше 5 лет назад

An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Sessions keys are stored in plain-text in Redis which allows attacker with Redis access to authenticate as any user that has a session stored in Redis

CVSS3: 5.7

EPSS: Низкий

CVE-2020-13344

больше 5 лет назад

An issue has been discovered in GitLab affecting all versions prior to ...

CVSS3: 5.7

EPSS: Низкий

GHSA-gc5m-gc6j-fr9q

больше 3 лет назад

An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Sessions keys are stored in plain-text in Redis which allows attacker with Redis access to authenticate as any user that has a session stored in Redis

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-13344 An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Sessions keys are stored in plain-text in Redis which allows attacker with Redis access to authenticate as any user that has a session stored in Redis	CVSS3: 5.7	0% Низкий	больше 5 лет назад
CVE-2020-13344 An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Sessions keys are stored in plain-text in Redis which allows attacker with Redis access to authenticate as any user that has a session stored in Redis	CVSS3: 5.7	0% Низкий	больше 5 лет назад
CVE-2020-13344 An issue has been discovered in GitLab affecting all versions prior to ...	CVSS3: 5.7	0% Низкий	больше 5 лет назад
GHSA-gc5m-gc6j-fr9q An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Sessions keys are stored in plain-text in Redis which allows attacker with Redis access to authenticate as any user that has a session stored in Redis		0% Низкий	больше 3 лет назад

Уязвимостей на страницу