Gitlab

GitLab

1368 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2025-12555

Exploit
  • EPSS 0.02%
  • Veröffentlicht 11.03.2026 16:07:15
  • Zuletzt bearbeitet 13.03.2026 13:22:06

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that, under certain conditions, could have allowed an authenticated user to access previous pipeline job informa...

4.3

CVE-2026-1732

Exploit
  • EPSS 0.02%
  • Veröffentlicht 11.03.2026 15:37:26
  • Zuletzt bearbeitet 13.03.2026 13:23:22

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to disclose confidential issue titles due to improper filtering un...

5

CVE-2026-3848

  • EPSS 0.02%
  • Veröffentlicht 11.03.2026 15:37:11
  • Zuletzt bearbeitet 16.04.2026 16:38:34

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.11 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to make unintended internal requests through proxy environments un...

7.5

CVE-2025-14511

Exploit
  • EPSS 0.05%
  • Veröffentlicht 25.02.2026 20:05:24
  • Zuletzt bearbeitet 28.02.2026 00:44:30

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.2 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 18.9.1 that could have allowed an unauthenticated user to cause denial of service by sending specially crafted files to...

6.1

CVE-2026-0752

Exploit
  • EPSS 0.1%
  • Veröffentlicht 25.02.2026 20:05:19
  • Zuletzt bearbeitet 28.02.2026 00:44:58

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.2 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 18.9.1 that under certain circumstances, could have allowed an unauthenticated user to inject arbitrary scripts into th...

7.5

CVE-2026-1388

Exploit
  • EPSS 0.05%
  • Veröffentlicht 25.02.2026 20:05:05
  • Zuletzt bearbeitet 28.02.2026 00:45:36

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 18.9.1 that could have allowed an unauthenticated user to cause regular expression denial of service by sending speciall...

7.5

CVE-2026-1662

Exploit
  • EPSS 0.05%
  • Veröffentlicht 25.02.2026 20:04:59
  • Zuletzt bearbeitet 28.02.2026 00:45:30

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.4 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 18.9.1 that could have allowed an unauthenticated user to cause Denial of Service by sending specially crafted requests...

4.3

CVE-2026-1747

Exploit
  • EPSS 0.01%
  • Veröffentlicht 25.02.2026 20:04:49
  • Zuletzt bearbeitet 28.02.2026 01:05:55

GitLab has remediated an issue in GitLab EE affecting all versions from 17.11 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 18.9.1 that, under certain conditions, could have allowed Developer-role users with insufficient privileges to make unaut...

7.5

CVE-2026-1725

Exploit
  • EPSS 0.05%
  • Veröffentlicht 25.02.2026 20:04:44
  • Zuletzt bearbeitet 28.02.2026 01:06:15

GitLab has remediated an issue in GitLab CE/EE affecting versions from 18.9 before 18.9.1 that could have under certain conditions, allowed an unauthenticated user to cause denial of service by sending specially crafted requests to a CI jobs API endp...

6.5

CVE-2026-2845

  • EPSS 0.05%
  • Veröffentlicht 25.02.2026 20:04:35
  • Zuletzt bearbeitet 28.02.2026 01:05:22

An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 18.9.1 that could have allowed an authenticated user to cause denial of service by exploiting a Bitbucket Server import e...