Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.17 views

GitLab 8.14 < 13.3.9 / 13.4 < 13.4.5 / 13.5 < 13.5.2 (CVE-2020-13355)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14. A path traversal is found in LFS Upload that allows attacker to overwrite certain specific paths on the server...

8.1CVSS7.5AI score0.0166EPSS
Exploits0References4
NVD
NVD
added 2020/11/19 12:15 a.m.31 views

CVE-2020-13355

An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14. A path traversal is found in LFS Upload that allows attacker to overwrite certain specific paths on the server. Affected versions are: =8.14, =13.4, =13.5, 13.5.2...

8.1CVSS7.5AI score0.0166EPSS
Exploits0References3
CVE
CVE
added 2020/11/18 11:30 p.m.86 views

CVE-2020-13355

Summary: CVE-2020-13355 is a path traversal vulnerability in GitLab CE/EE with LFS Upload that lets an attacker overwrite specific server paths. Affected GitLab versions are 8.14 through 13.3.8, 13.4 through 13.4.4, and 13.5 through 13.5.1. The root cause is a path traversal flaw in the LFS Uploa...

8.1CVSS7.6AI score0.0166EPSS
Exploits0References3Affected Software1
NCSC
NCSC
added 2020/11/17 12:0 a.m.53 views

Vulnerabilities fixed in GitLab

Several vulnerabilities have been fixed in GitLab. The vulnerabilities potentially allow a malicious person to launch attacks execute attacks that result in the following categories of damage: Cross-Site Request Forgery XSRF. Cross-Site Scripting XSS Denial-of-Service DoS. Manipulation of data...

8.7CVSS6.5AI score0.68639EPSS
Exploits0
Rows per page
Query Builder