Runner@* Security Vulnerabilities and Issues — Runner@* CVE List

Lucene search

GitlabRunner*

2 matches found

CVE•added 2020/08/10 2:15 p.m.•49 views

CVE-2020-13295

For GitLab Runner before 13.0.12, 13.1.6, 13.2.3, by replacing dockerd with a malicious server, the Shared Runner is susceptible to SSRF.

8.8CVSS8.4AI score0.00204EPSS

CVE•added 2020/10/22 9:15 p.m.•47 views

CVE-2020-13327

An issue has been discovered in GitLab Runner affecting all versions starting from 13.4.0 before 13.4.2, all versions starting from 13.3.0 before 13.3.7, all versions starting from 13.2.0 before 13.2.10. Insecure Runner Configuration in Kubernetes Environments

7.5CVSS7.2AI score0.00106EPSS