2 matches found
GitLab 1.0 < 13.1.10 / 13.2 < 13.2.8 / 13.3 < 13.3.4 (CVE-2020-13299)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. The revocation feature was not revoking all session tokens and one could re-use it to obtain a valid session...
CVE-2020-13299
Summary: CVE-2020-13299 affects GitLab versions before 13.1.10, 13.2.8, and 13.3.4. The revocation feature did not revoke all session tokens, allowing reuse to obtain a valid session. What is affected: GitLab deployments running any of the affected version ranges. Root cause (as described): Incom...