Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2020-09-14	CVE-2020-13300	Incorrect Authorization vulnerability in Gitlab 13.3.0/13.3.1/13.3.2 GitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change without user consent in the middle of the authorization flow. network low complexity gitlab CWE-863 critical	10.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.