5 matches found
GitLab 13.0 < 13.3.9 / 13.4.0 < 13.4.5 / 13.5.0 < 13.5.2 (CVE-2020-13351)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affecte...
CVE-2020-13351
creationtimestamp| type| source ---|---|--- 2020-11-17 20:39:14+00:00| seen| https://t.me/cibsecurity/16459 2020-12-09 03:25:14+00:00| seen| https://t.me/cibsecurity/17339...
CVE-2020-13351
Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are =13.0, =13.4.0, =13.5.0, 13.5.2...
CVE-2020-13351
Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are =13.0, =13.4.0, =13.5.0, 13.5.2...
CVE-2020-13351
CVE-2020-13351 affects GitLab CE/EE versions with insufficient permission checks in the scheduled pipeline API, allowing an attacker who can view a project to read variable names and values for that project’s scheduled pipelines. Affected versions are >=13.0 and =13.4.0 and =13.5.0 and