Lucene search
GitLabCVELIST:CVE-2020-13341HistoryOct 12, 2020 - 1:20 p.m.
CVE-2020-13341
2020-10-1213:20:07
GitLab
www.cve.org
8
gitlab
unauthorized deletions
insufficient permission
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
AI Score
4.7
Confidence
High
EPSS
0.001
Percentile
29.6%
An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Insufficient permission check allows attacker with developer role to perform various deletions.
CNA Affected
[
{
"product": "GitLab",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": ">=13.1, <13.2.10"
},
{
"status": "affected",
"version": ">=13.3, <13.3.7"
},
{
"status": "affected",
"version": ">=13.4, <13.4.2"
}
]
}
]Related
osv
osv
CVE-2020-13341
2020-10-12 14:15:12
BIT-gitlab-2020-13341
2024-03-06 11:21:47
prion
prion
Design/Logic Flaw
2020-10-12 14:15:00
ubuntucve
ubuntucve
CVE-2020-13341
2020-10-12 00:00:00
nvd
nvd
CVE-2020-13341
2020-10-12 14:15:12
debiancve
debiancve
CVE-2020-13341
2020-10-12 14:15:12
cve
cve
CVE-2020-13341
2020-10-12 14:15:12
nessus
nessus
GitLab 13.1 < 13.2.10 / 13.3 < 13.3.7 / 13.4 < 13.4.2 (CVE-2020-13341)
2024-05-17 00:00:00
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
AI Score
4.7
Confidence
High
EPSS
0.001
Percentile
29.6%
Related for CVELIST:CVE-2020-13341