3 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-13282
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper...
GitLab 10.5 < 13.0.12 / 13.1 < 13.1.6 / 13.2 < 13.2.3 (CVE-2020-13282)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access. CVE-2020-13282 Note that Nessus...
CVE-2020-13282
CVE-2020-13282 affects GitLab prior to 13.0.12, 13.1.6, and 13.2.3. After a group transfer, users who were members of a parent group retain their access level on the (child) subgroup, causing improper access control. The description and connected sources (NVD, OSV, CVE lists, and vendor/Nessus re...