PT-2020-13468 · Gitlab · Gitlab Runner+1

Joshua Lambert

Published

2020-10-22

Updated

2024-03-06

CVE-2020-13327

CVSS v3.1

7.5

High

Vector

AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions GitLab Runner versions 13.2.0 through 13.2.9 GitLab Runner versions 13.3.0 through 13.3.6 GitLab Runner versions 13.4.0 through 13.4.1

Description An issue has been discovered in GitLab Runner related to Insecure Runner Configuration in Kubernetes Environments.

Recommendations For GitLab Runner versions 13.2.0 through 13.2.9, update to version 13.2.10 or later. For GitLab Runner versions 13.3.0 through 13.3.6, update to version 13.3.7 or later. For GitLab Runner versions 13.4.0 through 13.4.1, update to version 13.4.2 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

BIT-GITLAB-RUNNER-2020-13327

CVE-2020-13327

Affected Products

Gitlab

Gitlab Runner

PT-2020-13468 · Gitlab · Gitlab Runner+1

CVE-2020-13327

Related Identifiers

Affected Products

References · 8