CVE-2020-13327

Published: Oct 22, 2020Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.6 / Impact: 5.9

Source: NVD

Description

An issue has been discovered in GitLab Runner affecting all versions starting from 13.4.0 before 13.4.2, all versions starting from 13.3.0 before 13.3.7, all versions starting from 13.2.0 before 13.2.10. Insecure Runner Configuration in Kubernetes Environments

Affected (3)

Products: Gitlab: Runner

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Gitlab Runner	From 13.2.0 to 13.2.10
Gitlab Runner	From 13.3.0 to 13.3.7
Gitlab Runner	From 13.4.0 to 13.4.2

References (4)

https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13327.json

Source: cve@gitlab.com

Vendor Advisory

https://gitlab.com/gitlab-org/gitlab-runner/-/issues/26833

Source: cve@gitlab.com

Broken LinkIssue TrackingVendor Advisory

https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13327.json

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://gitlab.com/gitlab-org/gitlab-runner/-/issues/26833

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkIssue TrackingVendor Advisory

Timeline

No history available yet.