Vulnerabilities > CVE-2020-13341 - Type Confusion vulnerability in Gitlab

047910
CVSS 4.9 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
gitlab
CWE-843
NVD
Published: 2020-10-12
Updated: 2021-07-21

Summary

An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Insufficient permission check allows attacker with developer role to perform various deletions.

Vulnerable Configurations

Part Description Count
Application
Gitlab
54

Common Weakness Enumeration (CWE)

References