CVE-2020-8920

Overoptimization leads to private information leak in Gerrit

Description

An information leak vulnerability exists in Gerrit versions prior to 2.14.22, 2.15.21, 2.16.25, 3.0.15, 3.1.10, 3.2.5 where an overoptimization with the FilteredRepository wrapper skips the verification of access on All-Users repositories, allowing an attacker to get read access to all users' personal information associated with their accounts.

References

Link	Tags
https://www.gerritcodereview.com/2.15.html#21521	release notes vendor advisory
https://www.gerritcodereview.com/2.16.html#21625	release notes vendor advisory
https://www.gerritcodereview.com/3.0.html#3014	release notes vendor advisory
https://www.gerritcodereview.com/3.1.html#3110	release notes vendor advisory
https://www.gerritcodereview.com/3.2.html#325	release notes vendor advisory
https://gerrit.googlesource.com/gerrit/+/45071d6977932bca5a1427c8abad24710fed2e33	issue tracking patch vendor advisory
https://www.gerritcodereview.com/2.14.html#21422	release notes vendor advisory

Frequently Asked Questions

What is the severity of CVE-2020-8920?: CVE-2020-8920 has been scored as a low severity vulnerability.
How to fix CVE-2020-8920?: To fix CVE-2020-8920, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2020-8920 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2020-8920 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2020-8920?: CVE-2020-8920 affects Gerrit Gerrit.

Description

Category

CWE-285 – Improper Authorization

References

Frequently Asked Questions