vulnerability
FreeBSD: VID-a003b74f-d7b3-11ea-9df1-001b217b3468 (CVE-2020-10977): Gitlab -- Multiple Vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:P/I:N/A:N) | Aug 6, 2020 | Aug 7, 2020 | Mar 25, 2026 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
Aug 6, 2020
Added
Aug 7, 2020
Modified
Mar 25, 2026
Description
Gitlab reports: Arbitrary File Read when Moving an Issue Memory Exhaustion via Excessive Logging of Invite Email Error Denial of Service Through Project Import Feature User Controlled Git Configuration Settings Resulting in SSRF Stored XSS in Issue Reference Number Tooltip Stored XSS in Issues List via Milestone Title Improper Access Control After Group Transfer Bypass Email Verification Required for OAuth Flow Confusion When Using Hexadecimal Branch Names Insufficient OAuth Revocation Improper Access Control for Project Sharing Stored XSS in Jobs Page Improper Access Control of Applications Page SSRF into Shared Runner Update Kramdown Gem
Solution
freebsd-upgrade-package-gitlab-ce
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.