GitLab Multiple Vulnerabilities
Last Update Date:
11 Aug 2020 10:32
Release Date:
11 Aug 2020
4470
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in GitLab, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, cross-site scripting and bypass security restriction on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Security Restriction Bypass
System / Technologies affected
- Affects all versions of GitLab
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
- The vendor has issued a fix:
https://about.gitlab.com/releases/2020/08/05/gitlab-13-2-3-released/
Vulnerability Identifier
- CVE-2020-14001
- CVE-2020-13295
- CVE-2020-13294
- CVE-2020-13293
- CVE-2020-13292
- CVE-2020-13291
- CVE-2020-13290
- CVE-2020-13288
- CVE-2020-13286
- CVE-2020-13285
- CVE-2020-13283
- CVE-2020-13282
- CVE-2020-13281
- CVE-2020-13280
- CVE-2020-10977
Source
Related Link
Share with