9.2 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.8%
GitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change without user consent in the middle of the authorization flow.
gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13300.json
gitlab.com/gitlab-org/gitlab/-/issues/219931
hackerone.com/reports/884766