Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.19 views

GitLab 13.0 < 13.3.9 / 13.4.0 < 13.4.5 / 13.5.0 < 13.5.2 (CVE-2020-13351)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affecte...

6.5CVSS6.5AI score0.01345EPSS
Exploits0References4
Circl
Circl
added 2020/11/17 8:39 p.m.8 views

CVE-2020-13351

creationtimestamp| type| source ---|---|--- 2020-11-17 20:39:14+00:00| seen| https://t.me/cibsecurity/16459 2020-12-09 03:25:14+00:00| seen| https://t.me/cibsecurity/17339...

6.5CVSS6.2AI score0.01345EPSS
Exploits0References2
NVD
NVD
added 2020/11/17 6:15 p.m.18 views

CVE-2020-13351

Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are =13.0, =13.4.0, =13.5.0, 13.5.2...

6.5CVSS6.1AI score0.01345EPSS
Exploits0References3
OSV
OSV
added 2020/11/17 6:15 p.m.20 views

CVE-2020-13351

Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are =13.0, =13.4.0, =13.5.0, 13.5.2...

6.5CVSS6.3AI score0.01345EPSS
Exploits0References3
CVE
CVE
added 2020/11/17 5:52 p.m.68 views

CVE-2020-13351

CVE-2020-13351 affects GitLab CE/EE versions with insufficient permission checks in the scheduled pipeline API, allowing an attacker who can view a project to read variable names and values for that project’s scheduled pipelines. Affected versions are &gt;=13.0 and =13.4.0 and =13.5.0 and

6.5CVSS6.2AI score0.01345EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder