CVE Vulnerabilities

CVE-2013-4546

Published: May 13, 2014 | Modified: Nov 21, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.5 MEDIUM
AV:N/AC:L/Au:S/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The repository import feature in gitlab-shell before 1.7.4, as used in GitLab, allows remote authenticated users to execute arbitrary commands via the import URL.

Affected Software

Name Vendor Start Version End Version
Gitlab Gitlab 5.0.0 (including) 5.0.0 (including)
Gitlab Gitlab 5.0.1 (including) 5.0.1 (including)
Gitlab Gitlab 5.1.0 (including) 5.1.0 (including)
Gitlab Gitlab 5.2.0 (including) 5.2.0 (including)
Gitlab Gitlab 5.3.0 (including) 5.3.0 (including)
Gitlab Gitlab 5.4.0 (including) 5.4.0 (including)
Gitlab Gitlab 5.4.1 (including) 5.4.1 (including)
Gitlab Gitlab 5.4.2 (including) 5.4.2 (including)
Gitlab Gitlab 6.0.0 (including) 6.0.0 (including)
Gitlab Gitlab 6.1.0 (including) 6.1.0 (including)
Gitlab Gitlab 6.2.0 (including) 6.2.0 (including)
Gitlab Gitlab 6.2.1 (including) 6.2.1 (including)
Gitlab Gitlab 6.2.2 (including) 6.2.2 (including)
Gitlab-shell Gitlab * 1.7.3 (including)
Gitlab-shell Gitlab 1.0.4 (including) 1.0.4 (including)
Gitlab-shell Gitlab 1.1.0 (including) 1.1.0 (including)
Gitlab-shell Gitlab 1.2.0 (including) 1.2.0 (including)
Gitlab-shell Gitlab 1.3.0 (including) 1.3.0 (including)
Gitlab-shell Gitlab 1.4.0 (including) 1.4.0 (including)
Gitlab-shell Gitlab 1.5.0 (including) 1.5.0 (including)
Gitlab-shell Gitlab 1.6.0 (including) 1.6.0 (including)
Gitlab-shell Gitlab 1.7.0 (including) 1.7.0 (including)
Gitlab-shell Gitlab 1.7.1 (including) 1.7.1 (including)
Gitlab-shell Gitlab 1.7.2 (including) 1.7.2 (including)

References