CVE-2020-26409

Publication date

2020-12-11 01:17:28

Family

GitLab

State

PUBLISHED

Description

A DOS vulnerability exists in Gitlab CE/EE >=10.3, <13.4.7,>=13.5, <13.5.5,>=13.6, <13.6.2 that allows an attacker to trigger uncontrolled resource by bypassing input validation in markdown fields.