{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T01:24:58.287","vulnerabilities":[{"cve":{"id":"CVE-2020-13274","sourceIdentifier":"cve@gitlab.com","published":"2020-06-19T22:15:12.927","lastModified":"2024-11-21T05:00:55.677","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A security issue allowed achieving Denial of Service attacks through memory exhaustion by uploading malicious artifacts in all previous GitLab versions through 13.0.1"},{"lang":"es","value":"Un problema de seguridad permitió lograr ataques de Denegación de Servicio por medio del agotamiento de la memoria al cargar artefactos maliciosos en todas las versiones anteriores de GitLab hasta la versión 13.0.1"}],"metrics":{"cvssMetricV31":[{"source":"cve@gitlab.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionEndExcluding":"12.9.8","matchCriteriaId":"5D12F24E-AA18-4BBA-9A00-8CE7B622F599"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionEndExcluding":"12.9.8","matchCriteriaId":"3D5D493A-5115-481B-B5D6-8A31A6874A9C"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"12.10.0","versionEndExcluding":"12.10.7","matchCriteriaId":"C9ED9593-9837-4849-A890-C2FDDC56C5A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"12.10.0","versionEndExcluding":"12.10.7","matchCriteriaId":"846CD4C7-BFCB-4DFC-901E-46CCA8ADA56A"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:13.0.0:*:*:*:community:*:*:*","matchCriteriaId":"439E1C57-8846-4EB8-A78A-DE6BDAF6CAF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:13.0.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"F6CA871C-BEFF-4951-AC88-ACA603C25CE1"}]}]}],"references":[{"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13274.json","source":"cve@gitlab.com","tags":["Vendor Advisory"]},{"url":"https://gitlab.com/gitlab-org/gitlab/-/issues/14195","source":"cve@gitlab.com","tags":["Broken Link"]},{"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13274.json","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://gitlab.com/gitlab-org/gitlab/-/issues/14195","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]}]}}]}