CVE-2020-13282

Publication date

2020-08-13 12:33:52

Family

GitLab

State

PUBLISHED

Description

For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access.