Lucene search
GitLabCVELIST:CVE-2020-13340HistoryOct 08, 2020 - 1:46 p.m.
CVE-2020-13340
2020-10-0813:46:33
GitLab
www.cve.org
5
gitlab
stored xss
ci job log
security issue
version 13.2.10
version 13.3.7
version 13.4.2
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
AI Score
8.1
Confidence
High
EPSS
0.001
Percentile
38.2%
An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2: Stored XSS in CI Job Log
CNA Affected
[
{
"product": "GitLab",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": ">=12.4, <13.2.10"
},
{
"status": "affected",
"version": ">=13.3, <13.3.7"
},
{
"status": "affected",
"version": ">=13.4, <13.4.2"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2020-13340
2020-10-08 00:00:00
cve
cve
CVE-2020-13340
2020-10-08 14:15:11
osv
osv
BIT-gitlab-2020-13340
2024-03-06 11:21:48
CVE-2020-13340
2020-10-08 14:15:11
nessus
nessus
nvd
nvd
CVE-2020-13340
2020-10-08 14:15:11
hackerone
hackerone
GitLab: Store-XSS in error message of build-dependencies
2020-08-03 13:15:26
debiancve
debiancve
CVE-2020-13340
2020-10-08 14:15:11
prion
prion
Cross site scripting
2020-10-08 14:15:00
freebsd
freebsd
Gitlab -- Multiple vulnerabilities
2020-11-02 00:00:00
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
AI Score
8.1
Confidence
High
EPSS
0.001
Percentile
38.2%
Related for CVELIST:CVE-2020-13340