Gitlab

GitLab

1368 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2026-1660

Exploit
  • EPSS 0.07%
  • Veröffentlicht 22.04.2026 16:04:51
  • Zuletzt bearbeitet 23.04.2026 20:45:07

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.3 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that under certain conditions could have allowed an authenticated user to cause denial of service when impor...

6.1

CVE-2026-5262

Exploit
  • EPSS 0.05%
  • Veröffentlicht 22.04.2026 16:04:36
  • Zuletzt bearbeitet 23.04.2026 20:38:56

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.1.0 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that under certain conditions could have allowed an unauthenticated user to access tokens in the Storybook...

4.3

CVE-2026-5377

Exploit
  • EPSS 0.01%
  • Veröffentlicht 22.04.2026 16:04:31
  • Zuletzt bearbeitet 23.04.2026 20:37:26

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.1 that could have allowed an authenticated user to access titles of confidential or private issues in public projects due to improper access control in the ...

8.1

CVE-2026-5816

Exploit
  • EPSS 0.01%
  • Veröffentlicht 22.04.2026 16:04:26
  • Zuletzt bearbeitet 23.04.2026 20:30:30

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.10.4 and 18.11 before 18.11.1 that could have allowed an unauthenticated user to execute arbitrary JavaScript in a user's browser session due to improper path ...

5.4

CVE-2026-6515

  • EPSS 0.01%
  • Veröffentlicht 22.04.2026 16:04:11
  • Zuletzt bearbeitet 23.04.2026 20:18:22

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have allowed a user to use invalidated or incorrectly scoped credentials to access Virtual Regist...

4.3

CVE-2025-9484

Exploit
  • EPSS 0.02%
  • Veröffentlicht 08.04.2026 22:27:17
  • Zuletzt bearbeitet 14.04.2026 17:03:59

GitLab has remediated an issue in GitLab EE affecting all versions from 16.6 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that under certain circumstances could have allowed an authenticated user to have access to other users' email ad...

7.5

CVE-2025-12664

Medienbericht Exploit
  • EPSS 0.06%
  • Veröffentlicht 08.04.2026 22:26:42
  • Zuletzt bearbeitet 14.04.2026 17:04:59

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.0 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an unauthenticated user to cause denial of service by sending repeated GraphQL queries...

7.5

CVE-2026-1092

Medienbericht Exploit
  • EPSS 0.04%
  • Veröffentlicht 08.04.2026 22:26:12
  • Zuletzt bearbeitet 14.04.2026 17:38:07

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.10 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an unauthenticated user to cause denial of service due to improper input validation o...

6.5

CVE-2026-1101

Exploit
  • EPSS 0.03%
  • Veröffentlicht 08.04.2026 22:26:07
  • Zuletzt bearbeitet 14.04.2026 14:05:39

GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user to cause denial of service to the GitLab instance due to improper i...

5.7

CVE-2026-1516

Exploit
  • EPSS 0.04%
  • Veröffentlicht 08.04.2026 22:25:57
  • Zuletzt bearbeitet 14.04.2026 17:03:01

GitLab has remediated an issue in GitLab EE affecting all versions from 18.0.0 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that in Code Quality reports could have allowed an authenticated user to leak IP addresses of users viewing the...