Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-13308

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. A user without 2 factor authentication enabled could be prohibited from accessing GitLab by being invited into a project that had 2 factor authentication inheritance.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.2%
CVSS Severity
CVSS v3 Score 2.7
CVSS v2 Score 4.0
Products affected by CVE-2020-13308
  • Gitlab » Gitlab » Version: 13.1.0
    cpe:2.3:a:gitlab:gitlab:13.1.0
  • Gitlab » Gitlab » Version: 13.1.1
    cpe:2.3:a:gitlab:gitlab:13.1.1
  • Gitlab » Gitlab » Version: 13.1.2
    cpe:2.3:a:gitlab:gitlab:13.1.2
  • Gitlab » Gitlab » Version: 13.1.3
    cpe:2.3:a:gitlab:gitlab:13.1.3
  • Gitlab » Gitlab » Version: 13.1.4
    cpe:2.3:a:gitlab:gitlab:13.1.4
  • Gitlab » Gitlab » Version: 13.1.5
    cpe:2.3:a:gitlab:gitlab:13.1.5
  • Gitlab » Gitlab » Version: 13.1.6
    cpe:2.3:a:gitlab:gitlab:13.1.6
  • Gitlab » Gitlab » Version: 13.1.7
    cpe:2.3:a:gitlab:gitlab:13.1.7
  • Gitlab » Gitlab » Version: 13.1.8
    cpe:2.3:a:gitlab:gitlab:13.1.8
  • Gitlab » Gitlab » Version: 13.2.0
    cpe:2.3:a:gitlab:gitlab:13.2.0
  • Gitlab » Gitlab » Version: 13.2.1
    cpe:2.3:a:gitlab:gitlab:13.2.1
  • Gitlab » Gitlab » Version: 13.2.2
    cpe:2.3:a:gitlab:gitlab:13.2.2
  • Gitlab » Gitlab » Version: 13.2.3
    cpe:2.3:a:gitlab:gitlab:13.2.3
  • Gitlab » Gitlab » Version: 13.2.4
    cpe:2.3:a:gitlab:gitlab:13.2.4
  • Gitlab » Gitlab » Version: 13.2.5
    cpe:2.3:a:gitlab:gitlab:13.2.5
  • Gitlab » Gitlab » Version: 13.2.6
    cpe:2.3:a:gitlab:gitlab:13.2.6
  • Gitlab » Gitlab » Version: 13.3.0
    cpe:2.3:a:gitlab:gitlab:13.3.0
  • Gitlab » Gitlab » Version: 13.3.1
    cpe:2.3:a:gitlab:gitlab:13.3.1
  • Gitlab » Gitlab » Version: 13.3.2
    cpe:2.3:a:gitlab:gitlab:13.3.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved