GoogleCVELIST:CVE-2020-8920CVE-2020-8920 Overoptimization leads to private information leak in Gerrit
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
27.9%
An information leak vulnerability exists in Gerrit versions prior to 2.14.22, 2.15.21, 2.16.25, 3.0.15, 3.1.10, 3.2.5 where an overoptimization with the FilteredRepository wrapper skips the verification of access on All-Users repositories, allowing an attacker to get read access to all users’ personal information associated with their accounts.
CNA Affected
[
{
"product": "Gerrit",
"vendor": "Gerrit",
"versions": [
{
"changes": [
{
"at": "2.15.21",
"status": "unaffected"
},
{
"at": "2.16.25",
"status": "unaffected"
},
{
"at": "3.0.15",
"status": "unaffected"
},
{
"at": "3.1.10",
"status": "unaffected"
},
{
"at": "3.2.5",
"status": "unaffected"
}
],
"lessThan": "2.14.22",
"status": "affected",
"version": "stable",
"versionType": "custom"
}
]
}
]References
gerrit.googlesource.com/gerrit/+/45071d6977932bca5a1427c8abad24710fed2e33
www.gerritcodereview.com/2.14.html#21422
www.gerritcodereview.com/2.15.html#21521
www.gerritcodereview.com/2.16.html#21625
www.gerritcodereview.com/3.0.html#3014
www.gerritcodereview.com/3.1.html#3110
www.gerritcodereview.com/3.2.html#325
Related
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
27.9%