Vulnerabilities > Gitlab > Gitlab > 13.3.0

DATE CVE VULNERABILITY TITLE RISK
2020-09-14 CVE-2020-13316 Missing Authorization vulnerability in Gitlab
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4.
network
low complexity
gitlab CWE-862
4.0
4.0
2020-09-14 CVE-2020-13300 Incorrect Authorization vulnerability in Gitlab 13.3.0/13.3.1/13.3.2
GitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change without user consent in the middle of the authorization flow.
network
low complexity
gitlab CWE-863
critical
 10.0
10
2020-09-14 CVE-2020-13299 Insufficient Session Expiration vulnerability in Gitlab
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4.
network
low complexity
gitlab CWE-613
8.1
8.1
2020-09-14 CVE-2020-13289 Missing Authentication for Critical Function vulnerability in Gitlab
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4.
network
low complexity
gitlab CWE-306
5.5
5.5
2020-09-14 CVE-2020-13287 Unspecified vulnerability in Gitlab
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4.
network
low complexity
gitlab
4.0
4.0
2020-09-14 CVE-2020-13284 Incorrect Authorization vulnerability in Gitlab
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4.
network
low complexity
gitlab CWE-863
5.5
5.5