VYPR
Unrated severityNVD Advisory· Published Dec 11, 2020· Updated Aug 4, 2024

CVE-2020-26411

CVE-2020-26411

Description

A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to <13.4.7, >=13.5 to <13.5.5, and >=13.6 to <13.6.2). Using a specific query name for a project search can cause statement timeouts that can lead to a potential DOS if abused.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • GitLab Inc./GitLabllm-fuzzy2 versions
    >=13.4, <13.4.7; >=13.5, <13.5.5; >=13.6, <13.6.2+ 1 more
    • (no CPE)range: >=13.4, <13.4.7; >=13.5, <13.5.5; >=13.6, <13.6.2
    • (no CPE)range: >=13.4, <13.4.7
  • osv-coords
    Range: >= 13.4.0, < 13.4.7

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.