CVE-2020-13351 – Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an a …

17 November 2020

Vuln ID: CVE-2020-13351

Published: 2020-11-17 18:15:12Z

Description: Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are >=13.0, <13.3.9,>=13.4.0, <13.4.5,>=13.5.0, <13.5.2.

Source: NVD.NIST.GOV

Date:

17 November 2020

Categorie(s):

NVD

Tag(s):

NVD

OpenAI’s GPT-4 Can Autonomously Exploit 87% of One-Day Vulnerabilities, Study Finds26 April 2024
Threat Modeling and Understanding Inherent Threats – Adam Shostack – ESW #35926 April 2024
Check Point delivers strong quarterly revenue growth but stock drops26 April 2024
Rubrik IPO signals potential cybersecurity-led tech market revival25 April 2024
Foreign states targeting sensitive research at UK universities, MI5 warns25 April 2024