Gitlab

Gitlab

1222 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.4

CVE-2024-8402

Exploit
  • EPSS 0.06%
  • Published 13.03.2025 06:15:36
  • Last modified 08.08.2025 01:16:54

An issue was discovered in GitLab EE affecting all versions starting from 17.2 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. An input validation issue in the Google Cloud IAM integration ...

6.5

CVE-2025-0652

  • EPSS 0.02%
  • Published 13.03.2025 06:15:36
  • Last modified 08.08.2025 01:09:11

An issue has been discovered in GitLab EE/CE affecting all versions starting from 16.9 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2 could allow unauthorized users to access confidential i...

7.5

CVE-2025-1257

  • EPSS 0.05%
  • Published 13.03.2025 06:15:36
  • Last modified 08.08.2025 01:07:44

An issue was discovered in GitLab EE affecting all versions starting with 12.3 before 17.7.7, 17.8 prior to 17.8.5, and 17.9 prior to 17.9.2. A vulnerability in certain GitLab instances could allow an attacker to cause a denial of service condition b...

7.5

CVE-2024-12380

  • EPSS 0.02%
  • Published 13.03.2025 06:15:35
  • Last modified 06.08.2025 18:33:59

An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. Certain user inputs in repository mirroring settings could ...

6.5

CVE-2024-13054

  • EPSS 1.58%
  • Published 13.03.2025 06:15:35
  • Last modified 06.08.2025 18:36:58

An issue was discovered in GitLab CE/EE affecting all versions before 17.7.7, 17.8 prior to 17.8.5, and 17.9 prior to 17.9.2. where a denial of service vulnerability could allow an attacker to cause a system reboot under certain conditions.

2.7

CVE-2024-7296

Exploit
  • EPSS 0.01%
  • Published 13.03.2025 06:15:35
  • Last modified 06.08.2025 18:37:18

An issue was discovered in GitLab EE affecting all versions from 16.5 prior to 17.7.7, 17.8 prior to 17.8.5, and 17.9 prior to 17.9.2 which allowed a user with a custom permission to approve pending membership requests beyond the maximum number of a...

4.3

CVE-2025-2045

Exploit
  • EPSS 0.02%
  • Published 06.03.2025 13:15:12
  • Last modified 06.08.2025 18:33:48

Improper authorization in GitLab EE affecting all versions from 17.7 prior to 17.7.6, 17.8 prior to 17.8.4, 17.9 prior to 17.9.1 allow users with limited permissions to access to potentially sensitive project analytics data.

4.2

CVE-2025-1540

Exploit
  • EPSS 0.02%
  • Published 06.03.2025 09:15:26
  • Last modified 06.08.2025 18:33:28

An issue has been discovered in GitLab CE/EE for Self-Managed and Dedicated instances affecting all versions from 17.5 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.8.2. It was possible for a user added as an External to read and clone ...

6.1

CVE-2025-0555

  • EPSS 0.14%
  • Published 03.03.2025 16:15:39
  • Last modified 07.03.2025 19:37:57

A Cross Site Scripting (XSS) vulnerability in GitLab-EE affecting all versions from 16.6 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 prior to 17.9.1 allows an attacker to bypass security controls and execute arbitrary scripts in a users browser u...

6.1

CVE-2025-0475

  • EPSS 0.14%
  • Published 03.03.2025 11:15:15
  • Last modified 07.03.2025 12:30:28

An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 prior to 17.9.1. A proxy feature could potentially allow unintended content rendering leading to XSS under specific circums...