Lucene search
GitLabCVELIST:CVE-2020-13271HistoryJun 10, 2020 - 2:25 p.m.
CVE-2020-13271
2020-06-1014:25:15
GitLab
www.cve.org
1
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.003 Low
EPSS
Percentile
69.7%
A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1
CNA Affected
[
{
"product": "GitLab",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": "<12.9.8"
},
{
"status": "affected",
"version": ">=12.10, <12.10.7"
},
{
"status": "affected",
"version": ">=13.0, <13.0.1"
}
]
}
]Related
openvas
openvas
GitLab <= 12.9.7, 12.10.x - 12.10.6, 13.0.0 XSS Vulnerability
2022-03-25 00:00:00
debiancve
debiancve
CVE-2020-13271
2020-06-10 15:15:13
nessus
nessus
GitLab < 12.9.8 (CVE-2020-13271)
2024-05-17 00:00:00
prion
prion
Cross site scripting
2020-06-10 15:15:00
osv
osv
BIT-gitlab-2020-13271
2024-03-06 11:23:09
CVE-2020-13271
2020-06-10 15:15:13
ubuntucve
ubuntucve
CVE-2020-13271
2020-06-10 00:00:00
cve
cve
CVE-2020-13271
2020-06-10 15:15:13
nvd
nvd
CVE-2020-13271
2020-06-10 15:15:13
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.003 Low
EPSS
Percentile
69.7%
Related for CVELIST:CVE-2020-13271