Gitlab Ce Ee vulnerabilities

CVE-2020-26413 [MEDIUM] CWE-200 CVE-2020-26413: An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 13.6.2 An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 13.6.2. Information disclosure via GraphQL results in user email being unexpectedly visible.

CVE-2020-26409 [MEDIUM] CWE-20 CVE-2020-26409: A DOS vulnerability exists in Gitlab CE/EE >=10.3, <13.4.7,>=13.5, <13.5.5,>=13.6, <13.6.2 that allo A DOS vulnerability exists in Gitlab CE/EE >=10.3, =13.5, =13.6, <13.6.2 that allows an attacker to trigger uncontrolled resource by bypassing input validation in markdown fields.

CVE-2020-13357 [MEDIUM] CWE-639 CVE-2020-13357: An issue was discovered in Gitlab CE/EE versions >= 13.1 to <13.4.7, >= 13.5 to <13.5.5, and >= 13.6 An issue was discovered in Gitlab CE/EE versions >= 13.1 to = 13.5 to = 13.6 to <13.6.2 allowed an unauthorized user to access the user list corresponding to a feature flag in a project.

CVE-2020-26417 [MEDIUM] CWE-200 CVE-2020-26417: Information disclosure via GraphQL in GitLab CE/EE 13.1 and later exposes private group and project Information disclosure via GraphQL in GitLab CE/EE 13.1 and later exposes private group and project membership. This affects versions >=13.6 to =13.5 to =13.1 to <13.4.7.

CVE-2020-26408 [MEDIUM] CWE-862 CVE-2020-26408: A limited information disclosure vulnerability exists in Gitlab CE/EE from >= 12.2 to <13.4.7, >=13. A limited information disclosure vulnerability exists in Gitlab CE/EE from >= 12.2 to =13.5 to =13.6 to <13.6.2 that allows an attacker to view limited information in user's private profile

CVE-2020-26407 [MEDIUM] CWE-79 CVE-2020-26407: A XSS vulnerability exists in Gitlab CE/EE from 12.4 before 13.4.7, 13.5 before 13.5.5, and 13.6 bef A XSS vulnerability exists in Gitlab CE/EE from 12.4 before 13.4.7, 13.5 before 13.5.5, and 13.6 before 13.6.2 that allows an attacker to perform cross-site scripting to other users via importing a malicious project

CVE-2020-13359 [HIGH] CVE-2020-13359: The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operati The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are >=12.10, =13.4, =13.5, <13.5.2.

CVE-2020-13356 [HIGH] CVE-2020-13356: An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.8.9. A specially An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.8.9. A specially crafted request could bypass Multipart protection and read files in certain specific paths on the server. Affected versions are: >=8.8.9, =13.4, =13.5, <13.5.2.

CVE-2020-13355 [HIGH] CWE-22 CVE-2020-13355: An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14. A path trave An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14. A path traversal is found in LFS Upload that allows attacker to overwrite certain specific paths on the server. Affected versions are: >=8.14, =13.4, =13.5, <13.5.2.

CVE-2020-26405 [HIGH] CWE-22 CVE-2020-26405: Path traversal vulnerability in package upload functionality in GitLab CE/EE starting from 12.8 allo Path traversal vulnerability in package upload functionality in GitLab CE/EE starting from 12.8 allows an attacker to save packages in arbitrary locations. Affected versions are >=12.8, =13.4, =13.5, <13.5.2.

CVE-2020-13351 [MEDIUM] CWE-276 CVE-2020-13351: Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are >=13.0, =13.4.0, =13.5.0, <13.5.2.

CVE-2020-13352 [MEDIUM] CVE-2020-13352: Private group info is leaked leaked in GitLab CE/EE version 10.2 and above, when the project is move Private group info is leaked leaked in GitLab CE/EE version 10.2 and above, when the project is moved from private to public group. Affected versions are: >=10.2, =13.4, =13.5, <13.5.2.

CVE-2020-13354 [MEDIUM] CWE-400 CVE-2020-13354: A potential DOS vulnerability was discovered in GitLab CE/EE starting with version 12.6. The contain A potential DOS vulnerability was discovered in GitLab CE/EE starting with version 12.6. The container registry name check could cause exponential number of backtracks for certain user supplied values resulting in high CPU usage. Affected versions are: >=12.6, <13.3.9.

CVE-2020-13358 [MEDIUM] CVE-2020-13358: A vulnerability in the internal Kubernetes agent api in GitLab CE/EE version 13.3 and above allows u A vulnerability in the internal Kubernetes agent api in GitLab CE/EE version 13.3 and above allows unauthorized access to private projects. Affected versions are: >=13.4, =13.3, =13.5, <13.5.2.

CVE-2020-13350 [MEDIUM] CWE-352 CVE-2020-13350: CSRF in runner administration page in all versions of GitLab CE/EE allows an attacker who's able to CSRF in runner administration page in all versions of GitLab CE/EE allows an attacker who's able to target GitLab instance administrators to pause/resume runners. Affected versions are >=13.5.0, =13.4.0, <13.4.5,<13.3.9.

CVE-2019-5464 [CRITICAL] CWE-20 CVE-2019-5464: A flawed DNS rebinding protection issue was discovered in GitLab CE/EE 10.2 and later in the `url_bl A flawed DNS rebinding protection issue was discovered in GitLab CE/EE 10.2 and later in the `url_blocker.rb` which could result in SSRF where the library is utilized.

CVE-2019-15585 [CRITICAL] CWE-287 CVE-2019-15585: Improper authentication exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE Improper authentication exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE) in the GitLab SAML integration had a validation issue that permitted an attacker to takeover another user's account.

CVE-2019-15583 [HIGH] CWE-200 CVE-2019-15583: An information disclosure exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition ( An information disclosure exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE). When an issue was moved to a public project from a private one, the associated private labels and the private project namespace would be disclosed through the GitLab API.

CVE-2019-5465 [MEDIUM] CWE-200 CVE-2019-5465: An information disclosure issue was discovered in GitLab CE/EE 8.14 and later, by using the move iss An information disclosure issue was discovered in GitLab CE/EE 8.14 and later, by using the move issue feature which could result in disclosure of the newly created issue ID.

CVE-2019-15586 [MEDIUM] CWE-79 CVE-2019-15586: A XSS exists in Gitlab CE/EE < 12.1.10 in the Mermaid plugin. A XSS exists in Gitlab CE/EE < 12.1.10 in the Mermaid plugin.