Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2020-10977 — Path Traversal in Gitlab

CWE-22 — Path Traversal7 documents7 sources

Severity

5.5MEDIUMNVD

EPSS

4.8%

top 10.53%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Debian Gitlab Gitlab Gitlab EE

Timeline

PublishedApr 8

Latest updateMay 24

Description

GitLab EE/CE 8.5 to 12.9 is vulnerable to a an path traversal when moving an issue between projects.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/gitlab< gitlab 13.2.3-2 (sid)

▶NVDgitlab/gitlab8.5.0 — 12.9

▶gitlabgitlab/gitlab

▶gitlabgitlab/gitlab_ee

🔴Vulnerability Details

GHSA

GHSA-9cwr-gv28-fqcw: GitLab EE/CE 8↗2022-05-24

▶

OSV

CVE-2020-10977: GitLab EE/CE 8↗2020-04-08

▶

💥Exploits & PoCs

Metasploit

GitLab File Read Remote Code Execution↗

▶

📋Vendor Advisories

GitLab

CVE-2020-10977: GitLab EE/CE 8.5 to 12.9 is vulnerable to a an path traversal when moving an issue between projects.↗2020-04-08

▶

Debian

CVE-2020-10977: gitlab - GitLab EE/CE 8.5 to 12.9 is vulnerable to a an path traversal when moving an iss...↗2020

▶

📄Research Papers

CTF

easy / README↗

▶