CVE-2020-13327

HIGH7.5EPSS 0.11%

發布日:2024/3/6修改日:2025/4/3

描述

An issue has been discovered in GitLab Runner affecting all versions starting from 13.4.0 before 13.4.2, all versions starting from 13.3.0 before 13.3.7, all versions starting from 13.2.0 before 13.2.10. Insecure Runner Configuration in Kubernetes Environments

受影響套件(1)

Bitnami/gitlab-runner>= 13.2.0, < 13.2.10, >= 13.3.0, < 13.3.7, >= 13.4.0, < 13.4.2

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	HIGH7.5	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

參考連結(3)

WEBhttps://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13327.json
WEBhttps://gitlab.com/gitlab-org/gitlab-runner/-/issues/26833
WEBhttps://nvd.nist.gov/vuln/detail/CVE-2020-13327