Security Advisory

CVE-2020-13355

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-11-18 23:30:25

Last updated 2024-08-04 12:18:17

Assigner GitLab

State PUBLISHED

Description

An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14. A path traversal is found in LFS Upload that allows attacker to overwrite certain specific paths on the server. Affected versions are: >=8.14, <13.3.9,>=13.4, <13.4.5,>=13.5, <13.5.2.

← Browse all CVEs View on cve.org ↗