Gitlab

GitLab

1368 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2026-3074

Exploit
  • EPSS 0.02%
  • Veröffentlicht 14.05.2026 05:36:02
  • Zuletzt bearbeitet 16.05.2026 03:35:32

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to download private debugging symbols from inaccessible proj...

5.8

CVE-2026-3160

Exploit
  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 05:35:57
  • Zuletzt bearbeitet 16.05.2026 03:34:41

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to view Jira issues outside the configured project scope due t...

4.3

CVE-2026-3607

Exploit
  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 05:35:42
  • Zuletzt bearbeitet 15.05.2026 19:57:36

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.3 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with developer-role permissions to bypass package protection r...

6.5

CVE-2026-4524

Exploit
  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 05:34:52
  • Zuletzt bearbeitet 15.05.2026 19:57:01

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to access confidential issue content in public projects with...

6.5

CVE-2026-4527

Exploit
  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 05:34:32
  • Zuletzt bearbeitet 15.05.2026 19:56:04

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to create unauthorized Jira subscriptions for a targeted us...

4.3

CVE-2026-6063

Exploit
  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 05:34:12
  • Zuletzt bearbeitet 16.05.2026 03:34:11

GitLab has remediated an issue in GitLab EE affecting all versions from 11.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that under certain conditions could have allowed an authenticated user with developer-role permissions to remo...

5.4

CVE-2026-6073

Exploit
  • EPSS 0.06%
  • Veröffentlicht 14.05.2026 05:34:07
  • Zuletzt bearbeitet 16.05.2026 03:33:51

GitLab has remediated an issue in GitLab EE affecting all versions from 18.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to execute arbitrary JavaScript in other users' browsers due to i...

5.4

CVE-2026-6335

Exploit
  • EPSS 0.03%
  • Veröffentlicht 14.05.2026 05:33:57
  • Zuletzt bearbeitet 15.05.2026 19:54:51

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.3 that under certain conditions could have allowed an authenticated user to execute arbitrary code in another user's browser session due to improper sanitiz...

4.3

CVE-2026-6883

  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 05:33:52
  • Zuletzt bearbeitet 16.05.2026 03:33:30

GitLab has remediated an issue in GitLab EE affecting all versions from 15.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to bypass merge request approval requirements due to improper cle...

5.4

CVE-2026-7377

Exploit
  • EPSS 0.06%
  • Veröffentlicht 14.05.2026 05:33:42
  • Zuletzt bearbeitet 16.05.2026 03:33:03

GitLab has remediated an issue in GitLab EE affecting all versions from 18.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that, in customizable analytics dashboards, could have allowed an authenticated user to execute arbitrary JavaS...