Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2314 matches found

Prion
Prionadded 2020/09/30 6:15 p.m.14 views

Improper access control

An issue has been discovered in GitLab affecting versions =10.7 =13.1.0 =13.2.0 13.2.6. Improper Access Control for Deploy Tokens...

7.5CVSS8.5AI score0.016EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCveadded 2020/09/30 6:15 p.m.26 views

CVE-2020-13322

A vulnerability was discovered in GitLab versions after 12.9. Due to improper verification of permissions, an unauthorized user can create and delete deploy tokens...

7.2CVSS7AI score0.0115EPSS
Exploits1References1
Prion
Prionadded 2020/09/30 6:15 p.m.17 views

Input validation

A vulnerability was discovered in GitLab versions after 12.9. Due to improper verification of permissions, an unauthorized user can create and delete deploy tokens...

6.5CVSS6.6AI score0.0115EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2020/09/30 6:15 p.m.1 views

UBUNTU-CVE-2020-13322

A vulnerability was discovered in GitLab versions after 12.9. Due to improper verification of permissions, an unauthorized user can create and delete deploy tokens...

7.2CVSS5.8AI score0.0115EPSS
Exploits1References2
OSV
OSVadded 2020/09/30 6:15 p.m.2 views

UBUNTU-CVE-2020-13296

An issue has been discovered in GitLab affecting versions =10.7 =13.1.0 =13.2.0 13.2.6. Improper Access Control for Deploy Tokens...

8.8CVSS5.7AI score0.016EPSS
Exploits0References2
Cvelist
Cvelistadded 2020/09/29 4:1 p.m.18 views

CVE-2020-13322

A vulnerability was discovered in GitLab versions after 12.9. Due to improper verification of permissions, an unauthorized user can create and delete deploy tokens...

7.2CVSS6.6AI score0.0115EPSS
Exploits1References2
CVE
CVEadded 2020/09/29 4:1 p.m.65 views

CVE-2020-13322

Affected software: GitLab versions after 12.9. Vulnerability: Improper verification of permissions allows an unauthorized user to create and delete deploy tokens. The root cause is permission verification weakness in token management, enabling manipulation of deploy tokens by unauthenticated/insu...

7.2CVSS6.5AI score0.0115EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVEadded 2020/09/29 4:1 p.m.22 views

CVE-2020-13322

Removed by vendor...

7.2CVSS7AI score0.0115EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2020/09/29 12:0 a.m.3 views

PT-2020-13437 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 10.7 through 13.0.13 GitLab versions 13.1.0 through 13.1.7 GitLab versions 13.2.0 through 13.2.5 Description: An issue has been discovered in GitLab related to Improper Access Control for Deploy Tokens. Recommendations: For...

8.8CVSS8.4AI score0.016EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2020/09/29 12:0 a.m.3 views

PT-2020-13463 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions after 12.9 Description: A vulnerability was discovered due to improper verification of permissions. This issue allows an unauthorized user to create and delete deploy tokens. Recommendations: For GitLab versions after 12.9,...

7.2CVSS6.7AI score0.0115EPSS
Exploits1References9
OSV
OSVadded 2020/09/14 7:15 p.m.24 views

CVE-2020-13316

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not validating a Deploy-Token and allowed a disabled repository be accessible via a git command line...

4.3CVSS6.4AI score0.01417EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2020/09/14 7:15 p.m.20 views

CVE-2020-13316

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not validating a Deploy-Token and allowed a disabled repository be accessible via a git command line...

5.4CVSS5.8AI score0.01417EPSS
Exploits0References2
OSV
OSVadded 2020/09/14 7:15 p.m.0 views

UBUNTU-CVE-2020-13316

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not validating a Deploy-Token and allowed a disabled repository be accessible via a git command line...

5.4CVSS5.8AI score0.01417EPSS
Exploits0References3
Prion
Prionadded 2020/09/14 7:15 p.m.13 views

Command injection

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not validating a Deploy-Token and allowed a disabled repository be accessible via a git command line...

4CVSS4.6AI score0.01417EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2020/09/14 12:0 a.m.2 views

PT-2020-13457 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions prior to 13.1.10 GitLab versions prior to 13.2.8 GitLab versions prior to 13.3.4 Description: A vulnerability was discovered in GitLab where it failed to validate a Deploy-Token, allowing access to a disabled repository via a...

5.4CVSS4.5AI score0.01417EPSS
Exploits0References11
NCSC
NCSCadded 2020/09/10 12:0 a.m.3 views

Vulnerabilities fixed in McAfee Endpoint Security

McAfee has fixed vulnerabilities in End Point Security. A local malicious party could exploit the vulnerabilities to gain access gain access to sensitive data, or by obtaining elevated permissions to stop the anti-virus process and thereby deploy undetected implement malware. McAfee has released...

8.8CVSS7.1AI score0.0039EPSS
Exploits0
NVD
NVDadded 2020/09/09 4:15 p.m.11 views

CVE-2020-24566

In Octopus Deploy 2020.3.x before 2020.3.4 and 2020.4.x before 2020.4.1, if an authenticated user creates a deployment or runbook process using Azure steps and sets the step's execution location to run on the server/worker, then under certain circumstances the account password is exposed in...

7.5CVSS0.01812EPSS
Exploits0References2
Prion
Prionadded 2020/09/09 4:15 p.m.15 views

Design/Logic Flaw

In Octopus Deploy 2020.3.x before 2020.3.4 and 2020.4.x before 2020.4.1, if an authenticated user creates a deployment or runbook process using Azure steps and sets the step's execution location to run on the server/worker, then under certain circumstances the account password is exposed in...

4.3CVSS7.6AI score0.01812EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2020/09/09 3:31 p.m.18 views

CVE-2020-24566

In Octopus Deploy 2020.3.x before 2020.3.4 and 2020.4.x before 2020.4.1, if an authenticated user creates a deployment or runbook process using Azure steps and sets the step's execution location to run on the server/worker, then under certain circumstances the account password is exposed in...

7.6AI score0.01812EPSS
Exploits0References2
CVE
CVEadded 2020/09/09 3:31 p.m.51 views

CVE-2020-24566

Octopus Deploy CVE-2020-24566 affects Octopus Deploy 2020.3.x before 2020.3.4 and 2020.4.x before 2020.4.1. When an authenticated user creates a deployment or runbook process using Azure steps and sets the step’s execution location to run on the server/worker, the account password may be exposed ...

7.5CVSS7.5AI score0.01812EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder