2 matches found
CVE-2020-15525
GitLab EE 11.3 through 13.1.2 has Incorrect Access Control because of the Maven package upload endpoint...
CVE-2020-15525
CVE-2020-15525 affects GitLab EE versions 11.3–13.1.2 and is caused by Incorrect Access Control at the Maven package upload endpoint. The issue enables unauthorized access via Maven Repository APIs (impact described as partial confidentiality in CVSS terms); some sources note potential access to ...