CVE-2020-26411
published 2020-12-11CVE-2020-26411: A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to =13.5 to =13.6 to <13.6.2). Using a specific query name…
PriorityP421medium4.3CVSS 3.1
AVNACLPRLUINSUCNINAL
EPSS
1.20%
64.5th percentile
A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to =13.5 to =13.6 to <13.6.2). Using a specific query name for a project search can cause statement timeouts that can lead to a potential DOS if abused.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gitlab | < gitlab 13.4.7-1 (sid) | gitlab 13.4.7-1 (sid) |
| gitlab | gitlab | — | — |
| gitlab | gitlab | — | — |
| gitlab | gitlab | — | — |
| gitlab | gitlab | — | — |
| gitlab | gitlab | >= 13.4.0 < 13.4.7 | 13.4.7 |
| gitlab | gitlab | >= 13.5.0 < 13.5.5 | 13.5.5 |
| gitlab | gitlab | >= 13.6.0 < 13.6.2 | 13.6.2 |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
osv4.3MEDIUM
vendor_debian4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GitLab
CVE-2020-26411: A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to <13.4.7, >=13.5 to <13.5.5, and >=13.6 to <13.6
vendor_gitlab·2020-12-11·CVSS 4.3
CVE-2020-26411 [MEDIUM] CWE-404 CVE-2020-26411: A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to <13.4.7, >=13.5 to <13.5.5, and >=13.6 to <13.6
CVE-2020-26411: A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to =13.5 to =13.6 to <13.6.2). Using a specific query name for a project search can cause statement timeouts that can lead to a potential DOS if abused.
Debian
CVE-2020-26411: gitlab - A potential DOS vulnerability was discovered in all versions of Gitlab starting ...
vendor_debian·2020·CVSS 4.3
CVE-2020-26411 [MEDIUM] CVE-2020-26411: gitlab - A potential DOS vulnerability was discovered in all versions of Gitlab starting ...
A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to =13.5 to =13.6 to <13.6.2). Using a specific query name for a project search can cause statement timeouts that can lead to a potential DOS if abused.
Scope: local
sid: resolved (fixed in 13.4.7-1)
GHSA
GHSA-2qvv-wf53-7c44: A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13
ghsa_unreviewed·2022-05-24
CVE-2020-26411 [MEDIUM] CWE-404 GHSA-2qvv-wf53-7c44: A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13
A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to =13.5 to =13.6 to <13.6.2). Using a specific query name for a project search can cause statement timeouts that can lead to a potential DOS if abused.
OSV
CVE-2020-26411: A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13
osv·2020-12-11·CVSS 4.3
CVE-2020-26411 [MEDIUM] CVE-2020-26411: A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13
A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to =13.5 to =13.6 to <13.6.2). Using a specific query name for a project search can cause statement timeouts that can lead to a potential DOS if abused.
No detection rules found.
No public exploits indexed.
Trendmicro
Cinobi Banking Trojan Targets Cryptocurrency Exchange Users via Malvertising
blogs_trendmicro·2021-08-09·CVSS 7.8
[HIGH] Cinobi Banking Trojan Targets Cryptocurrency Exchange Users via Malvertising
Minacce cyber
## Cinobi Banking Trojan Targets Cryptocurrency Exchange Users via Malvertising
We found a new social engineering-based malvertising campaign targeting Japan that delivered a malicious application. The malicious application abused sideloading vulnerabilities to load and start the Cinobi banking trojan.
By: Joseph C Chen Aug 09, 2021 Read time: ( words)
Save to Folio
In a previous blog entry , we reported on a campaign, which we labeled “Operation Overtrap,” that targeted Japan with a new banking trojan called Cinobi. The campaign, which was perpetrated by a group we named “Water Kappa,” delivered Cinobi via spam. It also delivered the trojan using the Bottle exploit kit, which included newer Internet Explorer exploits CVE-2020-1380 and CVE-2021-26411 and was used for mal
Threat Intel
APT37 (APT37, InkySquid, ScarCruft)
threat_intel
APT37 (APT37, InkySquid, ScarCruft)
# Threat Actor Profile: APT37
ATT&CK ID: G0067
Also known as: APT37, InkySquid, ScarCruft, Reaper, Group123, TEMP.Reaper, Ricochet Chollima
Suspected origin: China
## Overview
APT37 is a North Korean state-sponsored cyber espionage group that has been active since at least 2012. The group has targeted victims primarily in South Korea, but also in Japan, Vietnam, Russia, Nepal, China, India, Romania, Kuwait, and other parts of the Middle East. APT37 has also been linked to the following campaigns between 2016-2018: Operation Daybreak, Operation Erebus, Golden Time, Evil New Year, Are you Happy?, FreeMilk, North Korean Human Rights, and Evil New Year 2018.(Citation: FireEye APT37 Feb 2018)(Citation: Securelist ScarCruft Jun 2016)(Citation: Talos Group123)
North Korean group definitions are
2020-12-11
Published