CVE-2020-13327

MEDIUM

GitLab Runner <13.4.2-<13.3.7-<13.2.10 - Info Disclosure

Title source: llm

Description

An issue has been discovered in GitLab Runner affecting all versions starting from 13.4.0 before 13.4.2, all versions starting from 13.3.0 before 13.3.7, all versions starting from 13.2.0 before 13.2.10. Insecure Runner Configuration in Kubernetes Environments

References (2)

[Vendor Advisory] https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13327.json

[Broken Link, Issue Tracking, Vendor Advisory] https://gitlab.com/gitlab-org/gitlab-runner/-/issues/26833

Scores

CVSS v3 6.0

EPSS 0.0011

EPSS Percentile 28.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L

Classification

Status published

Affected Products (1)

gitlab/runner < 13.2.10

Timeline

Published Oct 22, 2020

Tracked Since Feb 18, 2026