Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.20 views

GitLab 13.3 < 13.3.9 / 13.4 < 13.4.5 / 13.5 < 13.5.2 (CVE-2020-26406)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Certain SAST CiConfiguration information could be viewed by unauthorized users in GitLab EE starting with 13.3. This information was exposed through GraphQL to non-members of public projects with...

5.3CVSS5.8AI score0.01421EPSS
Exploits0References4
Circl
Circl
added 2020/11/17 7:38 a.m.6 views

CVE-2020-26406

creationtimestamp| type| source ---|---|--- 2020-11-17 07:38:38+00:00| seen| https://t.me/cibsecurity/16431...

5.3CVSS5.5AI score0.01421EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/11/17 1:15 a.m.20 views

CVE-2020-26406

Certain SAST CiConfiguration information could be viewed by unauthorized users in GitLab EE starting with 13.3. This information was exposed through GraphQL to non-members of public projects with repository visibility restricted as well as guest members on private projects. Affected versions are:...

5.3CVSS6.1AI score0.01421EPSS
Exploits0References4
CVE
CVE
added 2020/11/17 12:13 a.m.88 views

CVE-2020-26406

GitLab GitLab EE vulnerability CVE-2020-26406: Certain SAST CiConfiguration information could be viewed by unauthorized users via GraphQL. Affected products/versions: GitLab EE 13.3 (up to 13.3.8), 13.4 (up to 13.4.4), and 13.5 (up to 13.5.1). Root cause: misexposure of SAST CiConfiguration data ...

5.3CVSS4.8AI score0.01421EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder