A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirroring feature.
2020-09-14T22:15:11.287
2024-11-21T05:01:00.230
Modified
CVSSv3.1: 5.4 (MEDIUM)
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.0
6.4
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | gitlab | gitlab | < 13.1.10 | Yes |
Application | gitlab | gitlab | < 13.2.8 | Yes |
Application | gitlab | gitlab | < 13.3.4 | Yes |