6.6 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.4%
For GitLab Runner before 13.0.12, 13.1.6, 13.2.3, by replacing dockerd with a malicious server, the Shared Runner is susceptible to SSRF.
gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13295.json
gitlab.com/gitlab-org/gitlab/-/issues/209096
hackerone.com/reports/809248