4 matches found
CVE-2020-8920
CVE-2020-8920 describes an information-leak in Gerrit where an over-optimization in the FilteredRepository wrapper bypasses access checks on All-Users repositories, allowing read access to users’ personal information. Affected versions are Gerrit before 2.14.22, 2.15.21, 2.16.25, 3.0.15, 3.1.10, ...
CVE-2020-8919
The CVE refers to Gerrit information leakage due to a missing access check on the branch REST API. Affected are Gerrit versions prior to 2.15.21, 2.16.25, 3.0.15, 3.1.10, and 3.2.5. The underlying issue enables an attacker with the default privilege set to read other users’ personal account data ...
CVE-2021-22553
The CVE affects Gerrit where any git operation is proxied through Jetty, creating a session without expiry and not disposed by Jetty, enabling heap memory exhaustion on the server after multiple git actions. Affected software is Gerrit with Jetty-based session handling; root cause is non-expiring...
CVE-2026-2725
Gerrit CVE-2026-2725 affects Gerrit versions 2.12 and later due to an incorrect authorization in the "submitted together" feature. An authenticated attacker with force-push permissions on a secondary branch can bypass code review and forcefully submit code to restricted branches by submitting a c...