3 matches found
CVE-2020-8919
An information leak vulnerability exists in Gerrit versions prior to 2.15.21, 2.16.25, 3.0.15, 3.1.10, 3.2.5 where a missing access check on the branch REST API allows an attacker with only the default set of priviledges to read all other user's personal account data as well as sub-trees with...
CVE-2020-8919
An information leak vulnerability exists in Gerrit versions prior to 2.15.21, 2.16.25, 3.0.15, 3.1.10, 3.2.5 where a missing access check on the branch REST API allows an attacker with only the default set of priviledges to read all other user's personal account data as well as sub-trees with...
CVE-2020-8919
The CVE refers to Gerrit information leakage due to a missing access check on the branch REST API. Affected are Gerrit versions prior to 2.15.21, 2.16.25, 3.0.15, 3.1.10, and 3.2.5. The underlying issue enables an attacker with the default privilege set to read other users’ personal account data ...