Vendor CVEs
GitLab Inc.
All CVEs
1,397 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-13284 | 0.00 | — | 0.01 | Sep 14, 2020 | A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. API Authorization Using Outdated CI Job Token | |||
| CVE-2020-13289 | 0.00 | — | 0.01 | Sep 14, 2020 | A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. In certain cases an invalid username could be accepted when 2FA is activated. | |||
| CVE-2020-13287 | 0.00 | — | 0.01 | Sep 14, 2020 | A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. Project reporters and above could see confidential EPIC attached to confidential issues | |||
| CVE-2020-13316 | 0.00 | — | 0.01 | Sep 14, 2020 | A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not validating a Deploy-Token and allowed a disabled repository be accessible via a git command line. | |||
| CVE-2020-13299 | 0.00 | — | 0.01 | Sep 14, 2020 | A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. The revocation feature was not revoking all session tokens and one could re-use it to obtain a valid session. | |||
| CVE-2020-13300 | 0.00 | — | 0.01 | Sep 14, 2020 | GitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change without user consent in the middle of the authorization flow. | |||
| CVE-2020-13286 | 0.00 | — | 0.01 | Aug 13, 2020 | For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configuration settings can be modified to result in Server Side Request Forgery. | |||
| CVE-2020-13281 | 0.00 | — | 0.01 | Aug 13, 2020 | For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists in the project import feature | |||
| CVE-2020-13280 | 0.00 | — | 0.01 | Aug 13, 2020 | For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message. | |||
| CVE-2020-13285 | 0.00 | — | 0.01 | Aug 13, 2020 | For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting (XSS) vulnerability exists in the issue reference number tooltip. | |||
| CVE-2020-13283 | 0.00 | — | 0.01 | Aug 13, 2020 | For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title. | |||
| CVE-2020-13282 | 0.00 | — | 0.01 | Aug 13, 2020 | For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access. | |||
| CVE-2020-13290 | 0.00 | — | 0.01 | Aug 12, 2020 | In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page | |||
| CVE-2020-13291 | 0.00 | — | 0.01 | Aug 12, 2020 | In GitLab before 13.2.3, project sharing could temporarily allow too permissive access. | |||
| CVE-2020-13288 | 0.00 | — | 0.04 | Aug 12, 2020 | In GitLab before 13.0.12, 13.1.6, and 13.2.3, a stored XSS vulnerability exists in the CI/CD Jobs page | |||
| CVE-2020-13292 | 0.00 | — | 0.01 | Aug 10, 2020 | In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is required for OAuth Flow. | |||
| CVE-2020-13295 | 0.00 | — | 0.01 | Aug 10, 2020 | For GitLab Runner before 13.0.12, 13.1.6, 13.2.3, by replacing dockerd with a malicious server, the Shared Runner is susceptible to SSRF. | |||
| CVE-2020-13294 | 0.00 | — | 0.01 | Aug 10, 2020 | In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not revoked when a user revoked access to an application. | |||
| CVE-2020-13293 | 0.00 | — | 0.01 | Aug 10, 2020 | In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override an existing hash. | |||
| CVE-2020-15525 | 0.00 | — | 0.01 | Jul 7, 2020 | GitLab EE 11.3 through 13.1.2 has Incorrect Access Control because of the Maven package upload endpoint. | |||
| CVE-2020-13279 | 0.00 | — | 0.01 | Jun 22, 2020 | Client side code execution in gitlab-vscode-extension v2.2.0 allows attacker to execute code on user system | |||
| CVE-2020-13263 | 0.00 | — | 0.01 | Jun 19, 2020 | An authorization issue relating to project maintainer impersonation was identified in GitLab EE 9.5 and later through 13.0.1 that could allow unauthorized users to impersonate as a maintainer to perform limited actions. | |||
| CVE-2020-13264 | 0.00 | — | 0.01 | Jun 19, 2020 | Kubernetes cluster token disclosure in GitLab CE/EE 10.3 and later through 13.0.1 allows other group maintainers to view Kubernetes cluster token | |||
| CVE-2020-13261 | 0.00 | — | 0.01 | Jun 19, 2020 | Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source code | |||
| CVE-2020-13262 | 0.00 | — | 0.01 | Jun 19, 2020 | Client-Side code injection through Mermaid markup in GitLab CE/EE 12.9 and later through 13.0.1 allows a specially crafted Mermaid payload to PUT requests on behalf of other users via clicking on a link | |||
| CVE-2020-13275 | 0.00 | — | 0.01 | Jun 19, 2020 | A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1 | |||
| CVE-2020-13274 | 0.00 | — | 0.01 | Jun 19, 2020 | A security issue allowed achieving Denial of Service attacks through memory exhaustion by uploading malicious artifacts in all previous GitLab versions through 13.0.1 | |||
| CVE-2020-13273 | 0.00 | — | 0.01 | Jun 19, 2020 | A Denial of Service vulnerability allowed exhausting the system resources in GitLab CE/EE 12.0 and later through 13.0.1 | |||
| CVE-2020-13265 | 0.00 | — | 0.01 | Jun 19, 2020 | User email verification bypass in GitLab CE/EE 12.5 and later through 13.0.1 allows user to bypass email verification | |||
| CVE-2020-13272 | 0.00 | — | 0.01 | Jun 19, 2020 | OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow | |||
| CVE-2020-13276 | 0.00 | — | 0.01 | Jun 19, 2020 | User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1 | |||
| CVE-2020-13277 | 0.00 | — | 0.02 | Jun 19, 2020 | An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5 | |||
| CVE-2020-13269 | 0.00 | — | 0.02 | Jun 10, 2020 | A Reflected Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code on the Static Site Editor in GitLab CE/EE 12.10 and later through 13.0.1 | |||
| CVE-2020-13270 | 0.00 | — | 0.01 | Jun 10, 2020 | Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1 allows guest users to create a fork relation on restricted public projects via API | |||
| CVE-2020-13268 | 0.00 | — | 0.01 | Jun 10, 2020 | A specially crafted request could be used to confirm the existence of files hosted on object storage services, without disclosing their contents. This vulnerability affects GitLab CE/EE 12.10 and later through 13.0.1 | |||
| CVE-2020-13267 | 0.00 | — | 0.02 | Jun 10, 2020 | A Stored Cross-Site Scripting vulnerability allowed the execution on Javascript payloads on the Metrics Dashboard in GitLab CE/EE 12.8 and later through 13.0.1 | |||
| CVE-2020-13271 | 0.00 | — | 0.02 | Jun 10, 2020 | A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1 | |||
| CVE-2020-13266 | 0.00 | — | 0.01 | Jun 9, 2020 | Insecure authorization in Project Deploy Keys in GitLab CE/EE 12.8 and later through 13.0.1 allows users to update permissions of other users' deploy keys under certain conditions | |||
| CVE-2020-12448 | 0.00 | — | 0.01 | May 7, 2020 | GitLab EE 12.8 and later allows Exposure of Sensitive Information to an Unauthorized Actor via NuGet. | |||
| CVE-2020-12275 | 0.00 | — | 0.01 | Apr 29, 2020 | GitLab 12.6 through 12.9 is vulnerable to a privilege escalation that allows an external user to create a personal snippet through the API. | |||
| CVE-2020-12276 | 0.00 | — | 0.01 | Apr 29, 2020 | GitLab 9.5.9 through 12.9 is vulnerable to stored XSS in an admin notification feature. | |||
| CVE-2020-12277 | 0.00 | — | 0.01 | Apr 29, 2020 | GitLab 10.8 through 12.9 has a vulnerability that allows someone to mirror a repository even if the feature is not activated. | |||
| CVE-2020-11649 | 0.00 | — | 0.01 | Apr 22, 2020 | An issue was discovered in GitLab CE and EE 8.15 through 12.9.2. Members of a group could still have access after the group is deleted. | |||
| CVE-2020-11506 | 0.00 | — | 0.01 | Apr 22, 2020 | An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure (Exposure of Sensitive Information) via request smuggling. | |||
| CVE-2020-11505 | 0.00 | — | 0.01 | Apr 22, 2020 | An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) before 12.7.9, 12.8.x before 12.8.9, and 12.9.x before 12.9.3. A Workhorse bypass could lead to NuGet package and file disclosure (Exposure of Sensitive Information) via request smuggling. | |||
| CVE-2020-10975 | 0.00 | — | 0.01 | Apr 8, 2020 | GitLab EE/CE 10.8 to 12.9 is leaking metadata and comments on vulnerabilities to unauthorized users on the vulnerability feedback page. | |||
| CVE-2020-10976 | 0.00 | — | 0.01 | Apr 8, 2020 | GitLab EE/CE 8.17 to 12.9 is vulnerable to information leakage when querying a merge request widget. | |||
| CVE-2020-10978 | 0.00 | — | 0.01 | Apr 8, 2020 | GitLab EE/CE 8.11 to 12.9 is leaking information on Issues opened in a public project and then moved to a private project through Web-UI and GraphQL API. | |||
| CVE-2020-10979 | 0.00 | — | 0.01 | Apr 8, 2020 | GitLab EE/CE 11.10 to 12.9 is leaking information on restricted CI pipelines metrics to unauthorized users. | |||
| CVE-2020-10980 | 0.00 | — | 0.02 | Apr 8, 2020 | GitLab EE/CE 8.0.rc1 to 12.9 is vulnerable to a blind SSRF in the FogBugz integration. |
- CVE-2020-13284Sep 14, 2020risk 0.00cvss —epss 0.01
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. API Authorization Using Outdated CI Job Token
- CVE-2020-13289Sep 14, 2020risk 0.00cvss —epss 0.01
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. In certain cases an invalid username could be accepted when 2FA is activated.
- CVE-2020-13287Sep 14, 2020risk 0.00cvss —epss 0.01
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. Project reporters and above could see confidential EPIC attached to confidential issues
- CVE-2020-13316Sep 14, 2020risk 0.00cvss —epss 0.01
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not validating a Deploy-Token and allowed a disabled repository be accessible via a git command line.
- CVE-2020-13299Sep 14, 2020risk 0.00cvss —epss 0.01
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. The revocation feature was not revoking all session tokens and one could re-use it to obtain a valid session.
- CVE-2020-13300Sep 14, 2020risk 0.00cvss —epss 0.01
GitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change without user consent in the middle of the authorization flow.
- CVE-2020-13286Aug 13, 2020risk 0.00cvss —epss 0.01
For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configuration settings can be modified to result in Server Side Request Forgery.
- CVE-2020-13281Aug 13, 2020risk 0.00cvss —epss 0.01
For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists in the project import feature
- CVE-2020-13280Aug 13, 2020risk 0.00cvss —epss 0.01
For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.
- CVE-2020-13285Aug 13, 2020risk 0.00cvss —epss 0.01
For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting (XSS) vulnerability exists in the issue reference number tooltip.
- CVE-2020-13283Aug 13, 2020risk 0.00cvss —epss 0.01
For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title.
- CVE-2020-13282Aug 13, 2020risk 0.00cvss —epss 0.01
For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access.
- CVE-2020-13290Aug 12, 2020risk 0.00cvss —epss 0.01
In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page
- CVE-2020-13291Aug 12, 2020risk 0.00cvss —epss 0.01
In GitLab before 13.2.3, project sharing could temporarily allow too permissive access.
- CVE-2020-13288Aug 12, 2020risk 0.00cvss —epss 0.04
In GitLab before 13.0.12, 13.1.6, and 13.2.3, a stored XSS vulnerability exists in the CI/CD Jobs page
- CVE-2020-13292Aug 10, 2020risk 0.00cvss —epss 0.01
In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is required for OAuth Flow.
- CVE-2020-13295Aug 10, 2020risk 0.00cvss —epss 0.01
For GitLab Runner before 13.0.12, 13.1.6, 13.2.3, by replacing dockerd with a malicious server, the Shared Runner is susceptible to SSRF.
- CVE-2020-13294Aug 10, 2020risk 0.00cvss —epss 0.01
In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not revoked when a user revoked access to an application.
- CVE-2020-13293Aug 10, 2020risk 0.00cvss —epss 0.01
In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override an existing hash.
- CVE-2020-15525Jul 7, 2020risk 0.00cvss —epss 0.01
GitLab EE 11.3 through 13.1.2 has Incorrect Access Control because of the Maven package upload endpoint.
- CVE-2020-13279Jun 22, 2020risk 0.00cvss —epss 0.01
Client side code execution in gitlab-vscode-extension v2.2.0 allows attacker to execute code on user system
- CVE-2020-13263Jun 19, 2020risk 0.00cvss —epss 0.01
An authorization issue relating to project maintainer impersonation was identified in GitLab EE 9.5 and later through 13.0.1 that could allow unauthorized users to impersonate as a maintainer to perform limited actions.
- CVE-2020-13264Jun 19, 2020risk 0.00cvss —epss 0.01
Kubernetes cluster token disclosure in GitLab CE/EE 10.3 and later through 13.0.1 allows other group maintainers to view Kubernetes cluster token
- CVE-2020-13261Jun 19, 2020risk 0.00cvss —epss 0.01
Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source code
- CVE-2020-13262Jun 19, 2020risk 0.00cvss —epss 0.01
Client-Side code injection through Mermaid markup in GitLab CE/EE 12.9 and later through 13.0.1 allows a specially crafted Mermaid payload to PUT requests on behalf of other users via clicking on a link
- CVE-2020-13275Jun 19, 2020risk 0.00cvss —epss 0.01
A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1
- CVE-2020-13274Jun 19, 2020risk 0.00cvss —epss 0.01
A security issue allowed achieving Denial of Service attacks through memory exhaustion by uploading malicious artifacts in all previous GitLab versions through 13.0.1
- CVE-2020-13273Jun 19, 2020risk 0.00cvss —epss 0.01
A Denial of Service vulnerability allowed exhausting the system resources in GitLab CE/EE 12.0 and later through 13.0.1
- CVE-2020-13265Jun 19, 2020risk 0.00cvss —epss 0.01
User email verification bypass in GitLab CE/EE 12.5 and later through 13.0.1 allows user to bypass email verification
- CVE-2020-13272Jun 19, 2020risk 0.00cvss —epss 0.01
OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow
- CVE-2020-13276Jun 19, 2020risk 0.00cvss —epss 0.01
User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1
- CVE-2020-13277Jun 19, 2020risk 0.00cvss —epss 0.02
An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5
- CVE-2020-13269Jun 10, 2020risk 0.00cvss —epss 0.02
A Reflected Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code on the Static Site Editor in GitLab CE/EE 12.10 and later through 13.0.1
- CVE-2020-13270Jun 10, 2020risk 0.00cvss —epss 0.01
Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1 allows guest users to create a fork relation on restricted public projects via API
- CVE-2020-13268Jun 10, 2020risk 0.00cvss —epss 0.01
A specially crafted request could be used to confirm the existence of files hosted on object storage services, without disclosing their contents. This vulnerability affects GitLab CE/EE 12.10 and later through 13.0.1
- CVE-2020-13267Jun 10, 2020risk 0.00cvss —epss 0.02
A Stored Cross-Site Scripting vulnerability allowed the execution on Javascript payloads on the Metrics Dashboard in GitLab CE/EE 12.8 and later through 13.0.1
- CVE-2020-13271Jun 10, 2020risk 0.00cvss —epss 0.02
A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1
- CVE-2020-13266Jun 9, 2020risk 0.00cvss —epss 0.01
Insecure authorization in Project Deploy Keys in GitLab CE/EE 12.8 and later through 13.0.1 allows users to update permissions of other users' deploy keys under certain conditions
- CVE-2020-12448May 7, 2020risk 0.00cvss —epss 0.01
GitLab EE 12.8 and later allows Exposure of Sensitive Information to an Unauthorized Actor via NuGet.
- CVE-2020-12275Apr 29, 2020risk 0.00cvss —epss 0.01
GitLab 12.6 through 12.9 is vulnerable to a privilege escalation that allows an external user to create a personal snippet through the API.
- CVE-2020-12276Apr 29, 2020risk 0.00cvss —epss 0.01
GitLab 9.5.9 through 12.9 is vulnerable to stored XSS in an admin notification feature.
- CVE-2020-12277Apr 29, 2020risk 0.00cvss —epss 0.01
GitLab 10.8 through 12.9 has a vulnerability that allows someone to mirror a repository even if the feature is not activated.
- CVE-2020-11649Apr 22, 2020risk 0.00cvss —epss 0.01
An issue was discovered in GitLab CE and EE 8.15 through 12.9.2. Members of a group could still have access after the group is deleted.
- CVE-2020-11506Apr 22, 2020risk 0.00cvss —epss 0.01
An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure (Exposure of Sensitive Information) via request smuggling.
- CVE-2020-11505Apr 22, 2020risk 0.00cvss —epss 0.01
An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) before 12.7.9, 12.8.x before 12.8.9, and 12.9.x before 12.9.3. A Workhorse bypass could lead to NuGet package and file disclosure (Exposure of Sensitive Information) via request smuggling.
- CVE-2020-10975Apr 8, 2020risk 0.00cvss —epss 0.01
GitLab EE/CE 10.8 to 12.9 is leaking metadata and comments on vulnerabilities to unauthorized users on the vulnerability feedback page.
- CVE-2020-10976Apr 8, 2020risk 0.00cvss —epss 0.01
GitLab EE/CE 8.17 to 12.9 is vulnerable to information leakage when querying a merge request widget.
- CVE-2020-10978Apr 8, 2020risk 0.00cvss —epss 0.01
GitLab EE/CE 8.11 to 12.9 is leaking information on Issues opened in a public project and then moved to a private project through Web-UI and GraphQL API.
- CVE-2020-10979Apr 8, 2020risk 0.00cvss —epss 0.01
GitLab EE/CE 11.10 to 12.9 is leaking information on restricted CI pipelines metrics to unauthorized users.
- CVE-2020-10980Apr 8, 2020risk 0.00cvss —epss 0.02
GitLab EE/CE 8.0.rc1 to 12.9 is vulnerable to a blind SSRF in the FogBugz integration.
Page 22 of 28