vulnerability
Gitlab Gitlab: CVE-2020-15525: Vulnerability in Gitlab Gitlab
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | Jul 7, 2020 | Apr 22, 2025 | Mar 25, 2026 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
Jul 7, 2020
Added
Apr 22, 2025
Modified
Mar 25, 2026
Description
GitLab EE 11.3 through 13.1.2 has Incorrect Access Control because of the Maven package upload endpoint.
Solution
gitlab-gitlab-upgrade-latest
References
- CVE-2020-15525
- https://attackerkb.com/topics/CVE-2020-15525
- https://about.gitlab.com/releases/2020/07/06/critical-security-release-gitlab-13-1-3-released/
- https://about.gitlab.com/releases/categories/releases/
- https://gitlab.com/gitlab-org/gitlab/-/issues/225259
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2020-7512
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.