CVE-2020-15525

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
07/07/2020
Last modified:
21/07/2021

Description

GitLab EE 11.3 through 13.1.2 has Incorrect Access Control because of the Maven package upload endpoint.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* 11.3.0 (including) 13.1.2 (including)