CVE-2026-1752
- EPSS 0.01%
- Veröffentlicht 08.04.2026 22:25:52
- Zuletzt bearbeitet 14.04.2026 17:02:07
GitLab has remediated an issue in GitLab EE affecting all versions from 11.3 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user with developer-role permissions to modify protected environment set...
CVE-2026-2104
- EPSS 0.02%
- Veröffentlicht 08.04.2026 22:25:47
- Zuletzt bearbeitet 14.04.2026 16:57:57
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user to access confidential issues assigned to other users via CSV ex...
CVE-2026-2619
- EPSS 0.02%
- Veröffentlicht 08.04.2026 22:25:37
- Zuletzt bearbeitet 14.04.2026 16:55:10
GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that under certain circumstances could have allowed an authenticated user with auditor privileges to modify vulne...
CVE-2026-4332
- EPSS 0.03%
- Veröffentlicht 08.04.2026 22:25:27
- Zuletzt bearbeitet 16.04.2026 13:00:20
GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that, in customizable analytics dashboards, could have allowed an authenticated user to execute arbitrary JavaScr...
CVE-2026-4916
- EPSS 0.01%
- Veröffentlicht 08.04.2026 22:25:22
- Zuletzt bearbeitet 16.04.2026 12:59:19
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user with custom role permissions to demote or remove higher-privileg...
CVE-2026-5173
- EPSS 0.03%
- Veröffentlicht 08.04.2026 22:25:12
- Zuletzt bearbeitet 16.04.2026 16:44:58
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.9.6 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user to invoke unintended server-side methods through websocket con...
CVE-2026-2370
- EPSS 0.01%
- Veröffentlicht 29.03.2026 23:33:44
- Zuletzt bearbeitet 30.03.2026 15:44:26
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 affecting Jira Connect installations that could have allowed an authenticated user with minimal workspace perm...
CVE-2025-13078
- EPSS 0.03%
- Veröffentlicht 25.03.2026 16:35:03
- Zuletzt bearbeitet 26.03.2026 18:29:26
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.10 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed an authenticated user to cause a denial of service due to excessive resource consumpt...
CVE-2025-13436
- EPSS 0.05%
- Veröffentlicht 25.03.2026 16:34:53
- Zuletzt bearbeitet 26.03.2026 18:28:49
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.7 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed an authenticated user to cause a denial of service due to excessive resource consumpti...
CVE-2025-14595
- EPSS 0.02%
- Veröffentlicht 25.03.2026 16:34:43
- Zuletzt bearbeitet 26.03.2026 18:28:05
GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that under certain conditions could have allowed an authenticated user with Planner role to view security categor...