Lucene search

CVE-2020-13353

🗓️ 17 Nov 2020 01:13:15Reported by [email protected]Type

Gitaly persists one-time use git credentials after importing repos via URL

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 12
Veracode	Broken Authentication And Session Management	6 Dec 202004:09	–	veracode
UbuntuCve	CVE-2020-13353	17 Nov 202000:00	–	ubuntucve
Cvelist	CVE-2020-13353	17 Nov 202000:26	–	cvelist
OSV	CVE-2020-13353	17 Nov 202001:15	–	osv
OSV	Gitaly Insufficient Session Expiration vulnerability	24 May 202217:34	–	osv
Github Security Blog	Gitaly Insufficient Session Expiration vulnerability	24 May 202217:34	–	github
Debian CVE	CVE-2020-13353	17 Nov 202001:15	–	debiancve
RubySec	Gitaly Insufficient Session Expiration vulnerability	23 May 202221:00	–	rubygems
Prion	Design/Logic Flaw	17 Nov 202001:15	–	prion
CVE	CVE-2020-13353	17 Nov 202001:15	–	cve

Nvd

Node

gitlab gitalyRange1.79.0–13.3.9

gitlab gitalyRange13.4.0–13.4.5

gitlab gitalyRange13.5.0–13.5.2

Source	Link
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13353.json
gitlab	www.gitlab.com/gitlab-org/gitaly/-/issues/2882

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Nov 2020 01:15Current

3.9Low risk

Vulners AI Score3.9

CVSS22.1

CVSS33.2

EPSS0.00084

CWE-613