Lucene search

CVE-2020-13359

🗓️ 19 Nov 2020 00:12:15Reported by [email protected]Type

Terraform API in GitLab CE/EE 12.10+ exposed object storage signed URL on delete operation, enabling project maintainer to overwrite Terraform stat

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 11
UbuntuCve	CVE-2020-13359	19 Nov 202000:00	–	ubuntucve
OSV	CVE-2020-13359	19 Nov 202000:15	–	osv
OSV	BIT-gitlab-2020-13359	6 Mar 202411:21	–	osv
RedhatCVE	CVE-2020-13359	5 Feb 202513:46	–	redhatcve
Prion	Code injection	19 Nov 202000:15	–	prion
Tenable Nessus	GitLab 12.10 < 13.3.9 / 13.4 < 13.4.5 / 13.5 < 13.5.2 (CVE-2020-13359)	17 May 202400:00	–	nessus
Tenable Nessus	FreeBSD : Gitlab -- Multiple vulnerabilities (174e466b-1d48-11eb-bd0f-001b217b3468)	3 Nov 202000:00	–	nessus
Cvelist	CVE-2020-13359	18 Nov 202023:57	–	cvelist
Debian CVE	CVE-2020-13359	19 Nov 202000:15	–	debiancve
CVE	CVE-2020-13359	19 Nov 202000:15	–	cve

Nvd

Node

gitlab gitlabRange12.10.0–13.3.9community

gitlab gitlabRange12.10.0–13.3.9enterprise

gitlab gitlabRange13.4.0–13.4.5community

gitlab gitlabRange13.4.0–13.4.5enterprise

gitlab gitlabRange13.5.0–13.5.2community

gitlab gitlabRange13.5.0–13.5.2enterprise

Source	Link
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13359.json
gitlab	www.gitlab.com/gitlab-org/gitlab/-/issues/250266

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Nov 2020 00:15Current

7.2High risk

Vulners AI Score7.2

CVSS25.5

CVSS37.6

EPSS0.0009