CVE-2020-13327

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-13327

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-13327.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-13327

Aliases

BIT-gitlab-runner-2020-13327

Related

UBUNTU-CVE-2020-13327

Withdrawn

2024-05-08T06:50:35.970683Z

Published

2020-10-22T21:15:12Z

Modified

2023-12-06T00:45:07.894106Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue has been discovered in GitLab Runner affecting all versions starting from 13.4.0 before 13.4.2, all versions starting from 13.3.0 before 13.3.7, all versions starting from 13.2.0 before 13.2.10. Insecure Runner Configuration in Kubernetes Environments

References

Affected packages

Git / github.com/gitlabhq/gitlab-runner

Affected ranges

Type: GIT
Repo: https://github.com/gitlabhq/gitlab-runner
Events: Introduced

86ad88ea230a89dc97f700bdb6375dd0be7a25c7

Introduced

4e1f20da78e05b1188d270243c675e1d859b42d0

Introduced

353dd94ed818ae19ce53c76d8c187e72d2077cf2

Type: GIT
Repo: https://gitlab.com/gitlab-org/gitlab-runner
Events: Introduced

86ad88ea230a89dc97f700bdb6375dd0be7a25c7

Introduced

4e1f20da78e05b1188d270243c675e1d859b42d0

Introduced

353dd94ed818ae19ce53c76d8c187e72d2077cf2

Affected versions

v13.*

v13.10.0

v13.10.0-rc1

v13.11.0

v13.11.0-rc1

v13.12.0

v13.12.0-rc1

v13.2.0

v13.2.1

v13.2.2

v13.2.3

v13.2.4

v13.3.0

v13.3.1

v13.3.2

v13.4.0

v13.4.0-rc1

v13.4.1

v13.5.0

v13.5.0-rc1

v13.5.0-rc2

v13.6.0

v13.6.0-rc1

v13.7.0

v13.7.0-rc1

v13.8.0

v13.8.0-rc1

v13.9.0

v13.9.0-rc1

v14.*

v14.0.0

v14.0.0-rc1

v14.0.1

v14.1.0

v14.1.0-rc1

v14.10.0

v14.10.1

v14.2.0

v14.2.0-rc1

v14.3.0

v14.3.0-rc1

v14.3.1

v14.3.2

v14.3.3

v14.3.4

v14.4.0

v14.4.0-rc1

v14.4.1

v14.4.2

v14.5.0

v14.5.0-rc1

v14.5.1

v14.5.2

v14.6.0

v14.6.0-rc1

v14.6.1

v14.7.0

v14.7.1

v14.8.0

v14.8.1

v14.8.2

v14.8.3

v14.9.0

v14.9.1

v14.9.2

v15.*

v15.0.0

v15.0.1

v15.1.0

v15.1.1

v15.10.0

v15.10.1

v15.11.0

v15.11.1

v15.2.0

v15.2.1

v15.2.2

v15.3.0

v15.3.1

v15.3.2

v15.3.3

v15.4.0

v15.4.1

v15.4.2

v15.5.0

v15.5.1

v15.5.2

v15.6.0

v15.6.1

v15.6.2

v15.6.3

v15.7.0

v15.7.1

v15.7.2

v15.7.3

v15.7.4

v15.8.0

v15.8.1

v15.8.2

v15.8.3

v15.9.0

v15.9.1

v16.*

v16.0.0

v16.0.1

v16.0.2

v16.0.3

v16.1.0

v16.1.1

v16.2.0

v16.2.1

v16.2.2

v16.2.3

v16.3.0

v16.3.1

v16.3.2

v16.3.3

v16.4.0

v16.4.1

v16.4.2

v16.5.0

v16.6.0

v16.6.1