Lucene search

CVE-2020-26414

🗓️ 15 Jan 2021 15:18:15Reported by GitLabType

Issue in GitLab with quadratic time growth for malicious inpu

Reporter	Title	Published	Views	Family All 13
Tenable Nessus	GitLab 12.4 < 13.5.6 / 13.6.0 < 13.6.4 / 13.7.0 < 13.7.2 (CVE-2020-26414)	17 May 202400:00	–	nessus
Tenable Nessus	FreeBSD : Gitlab -- multiple vulnerabilities (a2a2b34d-52b4-11eb-87cb-001b217b3468)	11 Jan 202100:00	–	nessus
CVE	CVE-2020-26414	15 Jan 202116:15	–	cve
Debian CVE	CVE-2020-26414	15 Jan 202116:15	–	debiancve
NVD	CVE-2020-26414	15 Jan 202116:15	–	nvd
UbuntuCve	CVE-2020-26414	15 Jan 202100:00	–	ubuntucve
Veracode	Denial Of Service (DoS)	22 Jul 202318:28	–	veracode
Prion	Input validation	15 Jan 202116:15	–	prion
OSV	BIT-gitlab-2020-26414	6 Mar 202411:21	–	osv
OSV	CVE-2020-26414	15 Jan 202116:15	–	osv

[
  {
    "product": "GitLab",
    "vendor": "GitLab",
    "versions": [
      {
        "status": "affected",
        "version": ">=12.4, <13.5.6"
      },
      {
        "status": "affected",
        "version": ">=13.6.0, <13.6.4"
      },
      {
        "status": "affected",
        "version": ">=13.7.0, <13.7.2"
      }
    ]
  }
]

Source	Link
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-26414.json
gitlab	www.gitlab.com/gitlab-org/gitlab/-/issues/270199

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Jan 2021 15:15Current

6.4Medium risk

Vulners AI Score6.4

CVSS34.3

EPSS0.00077