Vulnerabilities > CVE-2020-13327 - Unspecified vulnerability in Gitlab Runner

CVSS 6.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

gitlab

NVD

Published: 2020-10-22

Updated: 2020-11-02

Summary

An issue has been discovered in GitLab Runner affecting all versions starting from 13.4.0 before 13.4.2, all versions starting from 13.3.0 before 13.3.7, all versions starting from 13.2.0 before 13.2.10. Insecure Runner Configuration in Kubernetes Environments

Vulnerable Configurations

Part	Description	Count
Application	Gitlab Gitlab Runner *	1

References

https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13327.json
https://gitlab.com/gitlab-org/gitlab-runner/-/issues/26833