Gitlab

GitLab

1310 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-14592

Exploit
  • EPSS 0.02%
  • Veröffentlicht 11.02.2026 11:34:01
  • Zuletzt bearbeitet 13.02.2026 15:18:16

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authenticated user to perform unauthorized operations by su...

5.4

CVE-2026-0595

Exploit
  • EPSS 0.07%
  • Veröffentlicht 11.02.2026 11:33:56
  • Zuletzt bearbeitet 12.02.2026 21:16:37

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.9 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authenticated user to add unauthorized email addresses to v...

7.5

CVE-2026-0958

Exploit
  • EPSS 0.04%
  • Veröffentlicht 11.02.2026 11:33:46
  • Zuletzt bearbeitet 13.02.2026 15:33:52

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an unauthenticated user to cause denial of service through memory or CPU exhaustion by b...

4.3

CVE-2026-1080

Exploit
  • EPSS 0.02%
  • Veröffentlicht 11.02.2026 11:33:41
  • Zuletzt bearbeitet 12.02.2026 21:38:00

GitLab has remediated an issue in GitLab EE affecting all versions from 16.7 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authenticated user to access iteration data from private desce...

4.6

CVE-2026-1094

Exploit
  • EPSS 0.02%
  • Veröffentlicht 11.02.2026 11:04:35
  • Zuletzt bearbeitet 12.02.2026 21:19:23

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.8 before 18.8.4 that could have allowed an authenticated developer to hide specially crafted file changes from the WebUI.

5.4

CVE-2026-1282

Exploit
  • EPSS 0.03%
  • Veröffentlicht 11.02.2026 11:04:25
  • Zuletzt bearbeitet 12.02.2026 21:22:02

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an authenticated user to inject malicious content into project labels titles.

6.5

CVE-2026-1387

Exploit
  • EPSS 0.04%
  • Veröffentlicht 11.02.2026 11:04:20
  • Zuletzt bearbeitet 12.02.2026 21:34:48

GitLab has remediated an issue in GitLab EE affecting all versions from 15.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an authenticated user to cause Denial of Service by uploading a malicious file and repeated...

7.5

CVE-2026-1456

Exploit
  • EPSS 0.03%
  • Veröffentlicht 11.02.2026 11:04:15
  • Zuletzt bearbeitet 12.02.2026 21:39:23

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an unauthenticated user to cause denial of service through CPU exhaustion by submitting specially crafted ma...

7.5

CVE-2026-1458

Exploit
  • EPSS 0.03%
  • Veröffentlicht 11.02.2026 11:04:05
  • Zuletzt bearbeitet 12.02.2026 21:58:51

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.0 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an unauthenticated user to cause denial of service by uploading...

3.1

CVE-2026-1751

Exploit
  • EPSS 0.01%
  • Veröffentlicht 02.02.2026 09:04:38
  • Zuletzt bearbeitet 04.02.2026 14:34:06

A vulnerability has been discovered in GitLab CE/EE affecting all versions starting with 16.8 before 18.5.0 that could have allowed unauthorized edits to merge request approval rules under certain conditions.