Home/Product/gitlab
Product

gitlab

500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-8280
>= 8.3.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.9.7, 18.10 before 18.10.6, and 18.11 befo
6.5MEDIUM
 CVE-2026-8144
>= 15.1.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 bef
4.3MEDIUM
 CVE-2026-7481
>= 16.4.0 and < 18.9.7
GitLab has remediated an issue in GitLab EE affecting all versions from 16.4 before 18.9.7, 18.10 before 18.10.6, and 18.11 before
8.7HIGH
 CVE-2026-7471
>= 18.8.0 and < 18.9.7
GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 before 18.9.7, 18.10 before 18.10.6, and 18.11 before
3.5LOW
 CVE-2026-7377
>= 18.7.0 and < 18.9.7
GitLab has remediated an issue in GitLab EE affecting all versions from 18.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before
8.7HIGH
 CVE-2026-6883
>= 15.7.0 and < 18.9.7
GitLab has remediated an issue in GitLab EE affecting all versions from 15.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before
2.6LOW
 CVE-2026-6335
>= 18.11.0 and < 18.11.3
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.3 that under certain conditions coul
5.4MEDIUM
 CVE-2026-6073
>= 18.7.0 and < 18.9.7
GitLab has remediated an issue in GitLab EE affecting all versions from 18.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before
8.7HIGH
 CVE-2026-6063
>= 11.10.0 and < 18.9.7
GitLab has remediated an issue in GitLab EE affecting all versions from 11.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 befor
4.3MEDIUM
 CVE-2026-4527
>= 11.10.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 be
6.5MEDIUM
 CVE-2026-4524
>= 18.9.1 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 b
6.5MEDIUM
 CVE-2026-3607
>= 18.3.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.3 before 18.9.7, 18.10 before 18.10.6, and 18.11 bef
4.3MEDIUM
 CVE-2026-3160
>= 13.7.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 bef
5.8MEDIUM
 CVE-2026-3074
>= 16.7.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 bef
4.3MEDIUM
 CVE-2026-3073
>= 17.6.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.6 before 18.9.7, 18.10 before 18.10.6, and 18.11 bef
4.3MEDIUM
 CVE-2026-2900
>= 16.10.0 and < 18.9.7
GitLab has remediated an issue in GitLab EE affecting all versions from 16.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 befor
2.7LOW
 CVE-2026-1659
>= 9.0.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.0 before 18.9.7, 18.10 before 18.10.6, and 18.11 befo
7.5HIGH
 CVE-2026-1338
>= 17.10.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 be
4.3MEDIUM
 CVE-2026-1322
>= 16.0.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.0 before 18.9.7, 18.10 before 18.10.6, and 18.11 bef
6.8MEDIUM
 CVE-2026-1184
>= 11.9.0 and < 18.9.7
GitLab has remediated an issue in GitLab EE affecting all versions from 11.9 before 18.9.7, 18.10 before 18.10.6, and 18.11 before
6.5MEDIUM
 CVE-2025-14870
>= 18.5.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.9.7, 18.10 before 18.10.6, and 18.11 bef
7.5HIGH
 CVE-2025-14869
>= 18.5.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.9.7, 18.10 before 18.10.6, and 18.11 bef
7.5HIGH
 CVE-2025-13874
>= 15.1.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 bef
4.3MEDIUM
 CVE-2025-12669
>= 15.11.0 and < 18.9.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.11 before 18.9.7, 18.10 before 18.10.6, and 18.11 be
5.4MEDIUM
 CVE-2026-6515
>= 18.2.0 and < 18.9.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 bef
5.4MEDIUM
 CVE-2026-5816
>= 18.10.0 and < 18.10.4
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.10.4 and 18.11 before 18.11.1 that coul
8.0HIGH
 CVE-2026-5377
all versions
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.1 that could have allowed an authent
4.3MEDIUM
 CVE-2026-5262
>= 16.1.0 and < 18.9.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.1.0 before 18.9.6, 18.10 before 18.10.4, and 18.11 b
8.0HIGH
 CVE-2026-4922
>= 17.0.0 and < 18.9.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.0 before 18.9.6, 18.10 before 18.10.4, and 18.11 bef
8.1HIGH
 CVE-2026-3254
all versions
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.1 that under certain conditions coul
3.5LOW
 CVE-2026-1660
>= 12.3.0 and < 18.9.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.3 before 18.9.6, 18.10 before 18.10.4, and 18.11 bef
6.5MEDIUM
 CVE-2025-9957
>= 11.2.0 and < 18.9.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 bef
2.7LOW
 CVE-2025-6016
>= 9.2.0 and < 18.9.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 befo
6.5MEDIUM
 CVE-2025-3922
>= 12.4.0 and < 18.9.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.4 before 18.9.6, 18.10 before 18.10.4, and 18.11 bef
6.5MEDIUM
 CVE-2025-0186
>= 10.6.0 and < 18.9.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.6 before 18.9.6, 18.10 before 18.10.4, and 18.11 bef
6.5MEDIUM
 CVE-2026-5173
>= 16.9.6 and < 18.8.9
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.9.6 before 18.8.9, 18.9 before 18.9.5, and 18.10 bef
8.5HIGH
 CVE-2026-4916
>= 18.2.0 and < 18.8.9
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 befor
2.7LOW
 CVE-2026-4332
>= 18.2.0 and < 18.8.9
GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 1
5.4MEDIUM
 CVE-2026-2619
>= 18.6.0 and < 18.8.9
GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 1
4.3MEDIUM
 CVE-2026-2104
>= 18.2.0 and < 18.8.9
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 befor
4.3MEDIUM
 CVE-2026-1752
>= 11.3.0 and < 18.8.9
GitLab has remediated an issue in GitLab EE affecting all versions from 11.3 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 1
4.3MEDIUM
 CVE-2026-1516
>= 18.0.0 and < 18.8.9
GitLab has remediated an issue in GitLab EE affecting all versions from 18.0.0 before 18.8.9, 18.9 before 18.9.5, and 18.10 before
5.7MEDIUM
 CVE-2026-1101
>= 18.2 and < 18.8.9
GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 1
6.5MEDIUM
 CVE-2026-1092
>= 12.10.0 and < 18.8.9
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.10 before 18.8.9, 18.9 before 18.9.5, and 18.10 befo
7.5HIGH
 CVE-2025-9484
>= 16.6.0 and < 18.8.9
GitLab has remediated an issue in GitLab EE affecting all versions from 16.6 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 1
4.3MEDIUM
 CVE-2025-12664
>= 13.0.0 and < 18.8.9
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.0 before 18.8.9, 18.9 before 18.9.5, and 18.10 befor
7.5HIGH
 CVE-2026-2370
>= 14.3.0 and < 18.8.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 18.10 befor
8.1HIGH
 CVE-2026-3988
>= 18.5.0 and < 18.8.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.8.7, 18.9 before 18.9.3, and 18.10 befor
7.5HIGH
 CVE-2026-3857
>= 17.10.0 and < 18.8.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.8.7, 18.9 before 18.9.3, and 18.10 befo
8.1HIGH
 CVE-2026-2995
>= 15.4.0 and < 18.8.7
GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 1
7.7HIGH
 CVE-2026-2973
>= 17.7.0 and < 18.8.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.8.7, 18.9 before 18.9.3, and 18.10 befor
5.4MEDIUM
 CVE-2026-2745
>= 7.11.0 and < 18.8.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 7.11 before 18.8.7, 18.9 before 18.9.3, and 18.10 befor
6.8MEDIUM
 CVE-2026-2726
>= 11.10.0 and < 18.8.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.8.7, 18.9 before 18.9.3, and 18.10 befo
4.3MEDIUM
 CVE-2026-1724
>= 18.5.0 and < 18.8.7
GitLab has remediated an issue in GitLab EE affecting all versions from 18.5 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 1
6.8MEDIUM
 CVE-2025-14595
>= 18.6.0 and < 18.8.7
GitLab has remediated an issue in GitLab EE affecting all versions from 18.6 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 1
4.3MEDIUM
 CVE-2025-13436
>= 13.7.0 and < 18.8.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.7 before 18.8.7, 18.9 before 18.9.3, and 18.10 befor
6.5MEDIUM
 CVE-2025-13078
>= 16.10.0 and < 18.8.7
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.10 before 18.8.7, 18.9 before 18.9.3, and 18.10 befo
6.5MEDIUM
 CVE-2026-4363
>= 18.1.0 and < 18.8.7
GitLab has remediated an issue in GitLab EE affecting all versions from 18.1 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 1
3.7LOW
 CVE-2026-1182
>= 8.14.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.14 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
4.3MEDIUM
 CVE-2025-12555
>= 15.1.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
4.3MEDIUM
 CVE-2026-3848
>= 8.11.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.11 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
5.0MEDIUM
 CVE-2026-1732
>= 12.6.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
4.3MEDIUM
 CVE-2026-1663
>= 14.4.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.4 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
4.3MEDIUM
 CVE-2026-1230
>= 1.0.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 1.0 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
4.1MEDIUM
 CVE-2026-1090
>= 10.6.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
8.7HIGH
 CVE-2026-1069
>= 18.9.0 and < 18.9.2
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9 before 18.9.2 that could have allowed an unauthent
7.5HIGH
 CVE-2026-0602
>= 15.6.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
4.3MEDIUM
 CVE-2025-14513
>= 16.11.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.11 before 18.7.6, 18.8 before 18.8.6, and 18.9 befor
7.5HIGH
 CVE-2025-13929
>= 10.0.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.0 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
7.5HIGH
 CVE-2025-13690
>= 16.11.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.11 before 18.7.6, 18.8 before 18.8.6, and 18.9 befor
6.5MEDIUM
 CVE-2025-12704
>= 18.2.0 and < 18.7.6
GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18
3.5LOW
 CVE-2025-12697
>= 15.5.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.5 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
2.2LOW
 CVE-2025-12576
>= 9.3.0 and < 18.7.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.3 before 18.7.6, 18.8 before 18.8.6, and 18.9 before
6.5MEDIUM
 CVE-2026-2845
>= 11.2.0 and < 18.7.5
An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 1
6.5MEDIUM
 CVE-2026-1747
>= 17.11.0 and < 18.7.5
GitLab has remediated an issue in GitLab EE affecting all versions from 17.11 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 1
4.3MEDIUM
 CVE-2026-1725
all versions
GitLab has remediated an issue in GitLab CE/EE affecting versions from 18.9 before 18.9.1 that could have under certain conditions
5.3MEDIUM
 CVE-2026-1662
>= 14.4.0 and < 18.7.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.4 before 18.7.5, 18.8 before 18.8.5, and 18.9 before
7.5HIGH
 CVE-2026-1388
>= 9.2.0 and < 18.7.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.7.5, 18.8 before 18.8.5, and 18.9 before
7.5HIGH
 CVE-2026-0752
>= 16.2.0 and < 18.7.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.2 before 18.7.5, 18.8 before 18.8.5, and 18.9 before
8.0HIGH
 CVE-2025-14511
>= 12.2.0 and < 18.7.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.2 before 18.7.5, 18.8 before 18.8.5, and 18.9 before
7.5HIGH
 CVE-2025-3525
>= 9.0.0 and < 18.7.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.0 before 18.7.5, 18.8 before 18.8.5, and 18.9 before
6.5MEDIUM
 CVE-2025-14103
>= 17.7.0 and < 18.7.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.7.5, 18.8 before 18.8.5, and 18.9 before
4.3MEDIUM
 CVE-2026-1458
>= 8.0.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.0 before 18.6.6, 18.7 before 18.7.4, and 18.8 before
6.5MEDIUM
 CVE-2026-1456
>= 18.7.0 and < 18.7.4
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.7 before 18.7.4, and 18.8 before 18.8.4 that could h
6.5MEDIUM
 CVE-2026-1387
>= 15.6.0 and < 18.6.6
GitLab has remediated an issue in GitLab EE affecting all versions from 15.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18
6.5MEDIUM
 CVE-2026-1282
>= 18.6.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before
3.5LOW
 CVE-2026-1094
>= 18.8.0 and < 18.8.4
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.8 before 18.8.4 that could have allowed an authentic
4.6MEDIUM
 CVE-2026-1080
>= 16.7.0 and < 18.6.6
GitLab has remediated an issue in GitLab EE affecting all versions from 16.7 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18
4.3MEDIUM
 CVE-2026-0958
>= 18.4.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 before 18.6.6, 18.7 before 18.7.4, and 18.8 before
7.5HIGH
 CVE-2026-0595
>= 13.9.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.9 before 18.6.6, 18.7 before 18.7.4, and 18.8 before
7.3HIGH
 CVE-2025-8099
>= 10.8.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.8 before 18.6.6, 18.7 before 18.7.4, and 18.8 before
7.5HIGH
 CVE-2025-7659
>= 18.2.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.6.6, 18.7 before 18.7.4, and 18.8 before
8.0HIGH
 CVE-2025-14594
>= 17.11.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.11 before 18.6.6, 18.7 before 18.7.4, and 18.8 befor
3.5LOW
 CVE-2025-14592
>= 18.6.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before
3.7LOW
 CVE-2025-14560
>= 17.1.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.6.6, 18.7 before 18.7.4, and 18.8 before
7.3HIGH
 CVE-2025-12575
>= 18.0.0 and < 18.6.6
GitLab has remediated an issue in GitLab EE affecting all versions from 18.0 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18
5.4MEDIUM
 CVE-2025-12073
>= 18.0.0 and < 18.6.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.0 before 18.6.6, 18.7 before 18.7.4, and 18.8 before
4.3MEDIUM
 CVE-2026-1751
>= 16.8.0 and < 18.5.0
A vulnerability has been discovered in GitLab CE/EE affecting all versions starting with 16.8 before 18.5.0 that could have allowe
3.1LOW
 CVE-2026-1102
>= 12.3.0 and < 18.6.4
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.3 before 18.6.4, 18.7 before 18.7.2, and 18.8 before
5.3MEDIUM
 CVE-2026-0723
>= 18.6.0 and < 18.6.4
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.4, 18.7 before 18.7.2, and 18.8 before
7.4HIGH
 CVE-2025-13928
>= 17.7.0 and < 18.6.4
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.6.4, 18.7 before 18.7.2, and 18.8 before
7.5HIGH
 CVE-2025-13927
>= 11.9.0 and < 18.6.4
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.9 before 18.6.4, 18.7 before 18.7.2, and 18.8 before
7.5HIGH
 CVE-2025-13335
>= 17.1.0 and < 18.6.4
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.6.4, 18.7 before 18.7.2, and 18.8 before
6.5MEDIUM
 CVE-2025-11224
>= 15.10.0 and < 18.3.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.10 before 18.3.6, 18.4 before 18.4.4, and 18.5 befor
7.7HIGH
 CVE-2025-9222
>= 18.2.2 and < 18.5.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18.6 before 18.6.3, and 18.7 befo
8.7HIGH
 CVE-2025-3950
>= 10.3.0 and < 18.5.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.3 before 18.5.5, 18.6 before 18.6.3, and 18.7 before
3.5LOW
 CVE-2025-13781
>= 18.5.0 and < 18.5.5
GitLab has remediated an issue in GitLab EE affecting all versions from 18.5 before 18.5.5, 18.6 before 18.6.3, and 18.7 before 18
6.5MEDIUM
 CVE-2025-13772
>= 18.4.0 and < 18.5.5
GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.5.5, 18.6 before 18.6.3, and 18.7 before 18
7.1HIGH
 CVE-2025-13761
>= 18.6.0 and < 18.6.3
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.3, and 18.7 before 18.7.1 that could h
8.0HIGH
 CVE-2025-11246
>= 15.4.0 and < 18.5.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.4 before 18.5.5, 18.6 before 18.6.3, and 18.7 before
5.4MEDIUM
 CVE-2025-10569
>= 8.3.0 and < 18.5.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.5.5, 18.6 before 18.6.3, and 18.7 before
6.5MEDIUM
 CVE-2025-12734
>= 15.6.0 and < 18.4.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.6 before 18.4.6, 18.5 before 18.5.4, and 18.6 before
3.5LOW
 CVE-2025-12029
>= 15.11.0 and < 18.4.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.11 before 18.4.6, 18.5 before 18.5.4, and 18.6 befor
8.0HIGH
 CVE-2025-8405
>= 17.1.0 and < 18.4.6
GitLab has remediated a security issue in GitLab CE/EE affecting all versions from 17.1 before 18.4.6, 18.5 before 18.5.4, and 18.
7.7HIGH
 CVE-2025-4097
>= 11.10.0 and < 18.4.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.4.6, 18.5 before 18.5.4, and 18.6 befor
6.5MEDIUM
 CVE-2025-11984
>= 13.1.0 and < 18.4.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.1 before 18.4.6, 18.5 before 18.5.4, and 18.6 before
6.8MEDIUM
 CVE-2025-11247
>= 13.2.0 and < 18.4.6
GitLab has remediated an issue in GitLab EE affecting all versions from 13.2 before 18.4.6, 18.5 before 18.5.4, and 18.6 before 18
4.3MEDIUM
 CVE-2025-14157
>= 6.3.0 and < 18.4.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 6.3 before 18.4.6, 18.5 before 18.5.4, and 18.6 before
6.5MEDIUM
 CVE-2025-13978
>= 17.5.0 and < 18.4.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.5 before 18.4.6, 18.5 before 18.5.4, and 18.6 before
4.3MEDIUM
 CVE-2025-12716
>= 18.4.0 and < 18.4.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 before 18.4.6, 18.5 before 18.5.4, and 18.6 before
8.7HIGH
 CVE-2025-12562
>= 11.10.0 and < 18.4.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.4.6, 18.5 before 18.5.4, and 18.6 befor
7.5HIGH
 CVE-2024-9183
>= 18.4.0 and < 18.4.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 prior to 18.4.5, 18.5 prior to 18.5.3, and 18.6 pr
7.7HIGH
 CVE-2025-7449
>= 8.3.0 and < 18.4.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.4.5, 18.5 before 18.5.3, and 18.6 before
6.5MEDIUM
 CVE-2025-6195
>= 13.7.0 and < 18.4.5
GitLab has remediated an issue in GitLab EE affecting all versions from 13.7 before 18.4.5, 18.5 before 18.5.3, and 18.6 before 18
4.3MEDIUM
 CVE-2025-13611
>= 13.2.0 and < 18.4.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.2 before 18.5.5 and 18.6 before 18.6.3 that could ha
2.0LOW
 CVE-2025-12653
>= 18.3.0 and < 18.4.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.3 before 18.4.5, 18.5 before 18.5.3, and 18.6 before
6.5MEDIUM
 CVE-2025-12571
>= 17.10.0 and < 18.4.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.4.5, 18.5 before 18.5.3, and 18.6 befor
7.5HIGH
 CVE-2025-9825
>= 13.7.0 and < 18.2.8
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.7 to 18.2.8, 18.3 before 18.3.4, and 18.4 before 18.
5.0MEDIUM
 CVE-2025-12983
>= 16.9.0 and < 18.3.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.9 before 18.3.6, 18.4 before 18.4.4, and 18.5 before
3.5LOW
 CVE-2025-7736
>= 17.9.0 and < 18.3.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.9 before 18.3.6, 18.4 before 18.4.4, and 18.5 before
3.1LOW
 CVE-2025-7000
>= 17.6.0 and < 18.3.6
An issue has been discovered in GitLab CE/EE affecting all versions from 17.6 before 18.3.6, 18.4 before 18.4.4, and 18.5 before
4.3MEDIUM
 CVE-2025-6945
>= 17.9.0 and < 18.3.6
GitLab has remediated an issue in GitLab EE affecting all versions from 17.8 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18
3.5LOW
 CVE-2025-6171
>= 13.2.0 and < 18.3.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.2 before 18.3.6, 18.4 before 18.4.4, and 18.5 before
5.3MEDIUM
 CVE-2025-2615
>= 16.7.0 and < 18.3.6
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.7 before 18.3.6, 18.4 before 18.4.4, and 18.5 befor
4.3MEDIUM
 CVE-2025-11990
>= 18.4.0 and < 18.4.4
GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.4.4, and 18.5 before 18.5.2 that could have
3.1LOW
 CVE-2025-11865
>= 18.1.0 and < 18.3.6
An issue has been discovered in GitLab EE affecting all versions from 18.1 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18.5
4.3MEDIUM
 CVE-2025-11702
>= 17.1.0 and < 18.3.5
GitLab has remediated an issue in EE affecting all versions from 17.1 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1 th
8.5HIGH
 CVE-2025-6601
>= 18.4.0 and < 18.4.3
GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.4.3, and 18.5 before 18.5.1 that under cert
2.7LOW
 CVE-2025-11989
>= 17.6.0 and < 18.3.5
GitLab has remediated an issue in GitLab EE affecting all versions from 17.6.0 before 18.3.5, 18.4 before 18.4.3, and 18.5 before
3.7LOW
 CVE-2025-11974
>= 11.7.0 and < 18.3.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.7 before 18.3.5, 18.4 before 18.4.3, and 18.5 before
6.5MEDIUM
 CVE-2025-11971
>= 10.6.0 and < 18.3.5
GitLab has remediated an issue in GitLab EE affecting all versions from 10.6 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18
6.5MEDIUM
 CVE-2025-11447
>= 11.0.0 and < 18.3.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.0 before 18.3.5, 18.4 before 18.4.3, and 18.5 before
7.5HIGH
 CVE-2025-10497
>= 17.10.0 and < 18.3.5
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.3.5, 18.4 before 18.4.3, and 18.5 befor
7.5HIGH
 CVE-2025-2934
>= 5.2.0 and < 18.2.8
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 5.2 prior to 18.2.8, 18.3 prior to 18.3.4, and 18.4 pri
4.3MEDIUM
 CVE-2025-11340
>= 18.3.0 and < 18.3.4
GitLab has remediated an issue in GitLab EE affecting all versions from 18.3 to 18.3.4, 18.4 to 18.4.2 that, under certain conditi
7.7HIGH
 CVE-2025-10004
>= 13.12.0 and < 18.2.8
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.12 to 18.2.8, 18.3 to 18.3.4, and 18.4 to 18.4.2 tha
7.5HIGH
 CVE-2025-8014
>= 11.10.0 and < 18.2.7
Denial of Service issue in GraphQL endpoints in Gitlab EE/CE affecting all versions from 11.10 prior to 18.2.7, 18.3 prior to 18.3
7.5HIGH
 CVE-2025-5069
>= 17.10.0 and < 18.2.7
An issue has been discovered in GitLab CE/EE affecting all versions from 17.10 before 18.2.7, 18.3 before 18.3.3, and 18.4 before
3.5LOW
 CVE-2025-11042
>= 17.2.0 and < 18.2.7
An issue was discovered in GitLab CE/EE affecting all versions starting from 17.2 before 18.2.7, 18.3 before 18.3.3, and 18.4 befo
4.3MEDIUM
 CVE-2025-10868
>= 17.4.0 and < 18.2.7
An issue has been discovered in GitLab CE/EE affecting all versions from 17.4 before 18.2.7, 18.3 before 18.3.3, and 18.4 before 1
3.5LOW
 CVE-2025-9958
>= 14.10.0 and < 18.2.7
An issue has been discovered in GitLab CE/EE affecting all versions from 14.10 before 18.2.7, 18.3 before 18.3.3, and 18.4 before
7.7HIGH
 CVE-2025-9642
>= 14.10.0 and < 18.2.7
An issue has been discovered in GitLab CE/EE affecting all versions from 14.10 before 18.2.7, 18.3 before 18.3.3, and 18.4 before
8.7HIGH
 CVE-2025-7691
>= 16.6.0 and < 18.2.7
A privilege escalation issue has been discovered in GitLab EE affecting all versions from 16.6 prior to 18.2.7, 18.3 prior to 18.3
6.5MEDIUM
 CVE-2025-10871
>= 16.6.0 and < 18.2.7
An issue has been discovered in GitLab EE affecting all versions from 16.6 before 18.2.7, 18.3 before 18.3.3, and 18.4 before 18.4
3.8LOW
 CVE-2025-10867
>= 18.1.0 and < 18.2.7
An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.2.7, 18.3 before 18.3.3, and 18.4 before 1
3.5LOW
 CVE-2025-10858
< 18.2.7
An issue was discovered in GitLab CE/EE affecting all versions before 18.2.7, 18.3 before 18.3.3, and 18.4 before 18.4.1 that allo
7.5HIGH
 CVE-2025-7337
>= 7.8.0 and < 18.1.6
An issue has been discovered in GitLab CE/EE affecting all versions from 7.8 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18
6.5MEDIUM
 CVE-2025-6769
>= 15.1.0 and < 18.1.6
An issue has been discovered in GitLab CE/EE affecting all versions from 15.1 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 1
4.3MEDIUM
 CVE-2025-6454
>= 16.11.0 and < 18.1.6
An issue has been discovered in GitLab CE/EE affecting all versions from 16.11 before 18.1.6, 18.2 before 18.2.6, and 18.3 before
8.5HIGH
 CVE-2025-2256
>= 7.12.0 and < 18.1.6
An issue has been discovered in GitLab CE/EE affecting all versions from 7.12 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 1
7.5HIGH
 CVE-2025-1250
>= 15.0.0 and < 18.1.6
An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 1
6.5MEDIUM
 CVE-2025-10094
>= 10.7.0 and < 18.1.6
An issue has been discovered in GitLab CE/EE affecting all versions from 10.7 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 1
6.5MEDIUM
 CVE-2025-5101
< 18.1.5
An issue has been discovered in GitLab CE/EE affecting all versions before 18.1.5, 18.2 before 18.2.5, and 18.3 before 18.3.1 that
5.0MEDIUM
 CVE-2025-4225
>= 14.1.0 and < 18.1.5
An issue has been discovered in GitLab CE/EE affecting all versions from 14.1 before 18.1.5, 18.2 before 18.2.5, and 18.3 before 1
5.3MEDIUM
 CVE-2025-3601
>= 8.15.0 and < 18.1.5
An issue has been discovered in GitLab CE/EE affecting all versions from 8.15 before 18.1.5, 18.2 before 18.2.5, and 18.3 before 1
6.5MEDIUM
 CVE-2025-2246
< 18.1.5
An issue has been discovered in GitLab CE/EE affecting all versions before 18.1.5, 18.2 before 18.2.5, and 18.3 before 18.3.1 that
5.8MEDIUM
 CVE-2025-8770
>= 18.0.0 and < 18.0.6
An issue has been discovered in GitLab EE affecting all versions from 18.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior t
6.5MEDIUM
 CVE-2025-7739
>= 18.2.0 and < 18.2.2
An issue has been discovered in GitLab CE/EE affecting all versions from 18.2 before 18.2.2 that, under certain conditions, could
8.7HIGH
 CVE-2025-7734
>= 14.2.0 and < 18.0.6
An issue has been discovered in GitLab CE/EE affecting all versions from 14.2 before 18.0.6, 18.1 before 18.1.4 and 18.2 before 18
8.7HIGH
 CVE-2025-6186
>= 18.1.0 and < 18.1.4
An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.1.4, and 18.2 before 18.2.2 that could hav
8.7HIGH
 CVE-2025-5819
>= 15.7.0 and < 17.11.6
An issue has been discovered in GitLab CE/EE affecting all versions from 15.7 before 18.0.6, 18.1 before 18.1.4, and 18.2 before 1
5.0MEDIUM
 CVE-2025-2937
>= 13.2.0 and < 18.0.6
An issue has been discovered in GitLab CE/EE affecting all versions from 13.2 before 18.0.6, 18.1 before 18.1.4, and 18.2 before 1
6.5MEDIUM
 CVE-2025-2614
>= 11.6.0 and < 18.0.6
An issue has been discovered in GitLab CE/EE affecting all versions from 11.6 before 18.0.6, 18.1 before 18.1.4, and 18.2 before 1
6.5MEDIUM
 CVE-2025-2498
>= 12.0.0 and < 18.0.6
An improper access control in Gitlab EE affecting all versions from 12.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to
3.1LOW
 CVE-2025-1477
>= 8.1.4 and < 18.0.6
An issue has been discovered in GitLab CE/EE affecting all versions from 8.14 before 18.0.6, 18.1 before 18.1.4, and 18.2 before 1
6.5MEDIUM
 CVE-2024-12303
>= 17.7.0 and < 18.0.6
An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 18.0.6, 18.1 before 18.1.4, and 18.2 before 1
6.7MEDIUM
 CVE-2024-10219
>= 15.6.0 and < 18.0.6
An issue has been discovered in GitLab CE/EE affecting all versions from 15.6 before 18.0.6, 18.1 before 18.1.4, and 18.2 before 1
6.5MEDIUM
 CVE-2025-7001
>= 15.0.0 and < 18.0.5
An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 1
4.3MEDIUM
 CVE-2025-4976
>= 17.0.0 and < 18.0.5
An issue has been discovered in GitLab EE affecting all versions from 17.0 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2
4.3MEDIUM
 CVE-2025-1299
>= 15.4 and < 18.0.5
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 18.0.5, all versions starting from 1
4.3MEDIUM
 CVE-2025-0765
>= 17.9.0 and < 18.0.5
An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 1
4.3MEDIUM
 CVE-2025-4700
>= 15.10.0 and < 18.0.5
An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 18.0.5, 18.1 before 18.1.3, and 18.2 before
8.7HIGH
 CVE-2025-4439
>= 15.10.0 and < 18.0.5
An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 18.0.5, 18.1 before 18.1.3, and 18.2 before
7.7HIGH
 CVE-2025-6948
>= 17.11.0 and < 17.11.6
An issue has been discovered in GitLab CE/EE affecting all versions from 17.11 before 17.11.6, 18.0 before 18.0.4, and 18.1 before
8.7HIGH
 CVE-2025-6168
>= 18.0.0 and < 18.0.4
An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1 before 18.1.2 that could have al
2.7LOW
 CVE-2025-4972
>= 18.0.0 and < 18.0.4
An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1 before 18.1.2 that could have al
2.7LOW
 CVE-2025-3396
>= 13.3.0 and < 17.11.6
An issue has been discovered in GitLab EE affecting all versions from 13.3 before 17.11.6, 18.0 before 18.0.4, and 18.1 before 18.
4.3MEDIUM
 CVE-2025-5846
>= 16.10.0 and < 17.11.5
An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18
2.7LOW
 CVE-2025-5315
>= 17.2.0 and < 17.11.5
An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.11.5, 18.0 before 18.0.3, and 18.1 before
4.3MEDIUM
 CVE-2025-3279
>= 10.7.0 and < 17.11.5
An issue has been discovered in GitLab CE/EE affecting all versions from 10.7 before 17.11.5, 18.0 before 18.0.3, and 18.1 before
6.5MEDIUM
 CVE-2025-2938
>= 17.3.0 and < 17.11.5
An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.11.5, 18.0 before 18.0.3, and 18.1 before
3.1LOW
 CVE-2025-1754
>= 17.2.0 and < 17.11.5
An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.11.5, 18.0 before 18.0.3, and 18.1 before
5.3MEDIUM
 CVE-2023-5600
>= 16.0.0 and < 16.3.6
An issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 16.4
3.1LOW
 CVE-2024-4994
>= 16.1.0 and < 16.11.5
An issue has been discovered in GitLab CE/EE affecting all versions from 16.1.0 before 16.11.5, all versions starting from 17.0 be
8.1HIGH
 CVE-2024-4025
>= 7.10.0 and < 16.11.5
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions from 7.10 prior before 16.11.5, ver
6.5MEDIUM
 CVE-2025-5121
>= 17.11.0 and < 17.11.4
An issue has been discovered in GitLab CE/EE affecting all versions from 17.11 before 17.11.4 and 18.0 before 18.0.2. A missing au
8.5HIGH
 CVE-2025-2443
>= 16.6.0 and < 17.9.7
An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy bypass in a user
8.7HIGH
 CVE-2024-7586
>= 17.0.0 and < 17.0.6
An issue was discovered in GitLab EE affecting all versions starting from 17.0 prior to 17.0.6, starting from 17.1 prior to 17.1.4
4.1MEDIUM
 CVE-2025-5982
>= 12.0.0 and < 17.10.8
An issue has been discovered in GitLab EE affecting all versions from 12.0 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 1
3.7LOW
 CVE-2024-9512
< 17.10.8
An issue has been discovered in GitLab EE affecting all versions prior to 17.10.8, 17.11 prior to 17.11.4, and 18.0 prior to 18.0.
5.3MEDIUM
 CVE-2025-5195
>= 17.9.0 and < 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 17.10.7, 17.11 before 17.11.3, and 18.0 befor
4.3MEDIUM
 CVE-2025-0673
>= 17.7.0 and < 17.10.8
An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 17.10.8, 17.11 before 17.11.4, and 18.0 befor
7.5HIGH
 CVE-2025-5996
>= 2.1.0 and < 17.10.8
An issue has been discovered in GitLab CE/EE affecting all versions from 2.1.0 before 17.10.8, 17.11 before 17.11.4, and 18.0 befo
6.5MEDIUM
 CVE-2025-4278
>= 18.0.0 and < 18.0.2
An issue has been discovered in GitLab CE/EE affecting all versions starting with 18.0 before 18.0.2. Under certain conditions htm
8.7HIGH
 CVE-2025-2254
>= 17.9.0 and < 17.10.8
An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 17.10.8, 17.11 before 17.11.4, and 18.0 befor
8.7HIGH
 CVE-2025-1516
>= 8.7.0 and < 17.10.8
An issue has been discovered in GitLab CE/EE affecting all versions from 8.7 before 17.10.8, 17.11 before 17.11.4, and 18.0 before
6.5MEDIUM
 CVE-2025-1478
>= 8.13.0 and < 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions from 8.13 before 17.10.7, 17.11 before 17.11.3, and 18.0 befor
6.5MEDIUM
 CVE-2025-1763
>= 16.6.0 and < 17.9.7
An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy bypass in a user
8.7HIGH
 CVE-2024-9163
>= 12.1.0 and < 17.10.7
A business logic error in GitLab CE/EE affecting all versions starting from 12.1 prior to 17.10.7, 17.11 prior to 17.11.3 and 18.0
3.5LOW
 CVE-2024-7803
>= 11.6.0 and < 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions from 11.6 before 17.10.7, 17.11 before 17.11.3, and 18.0 befor
6.5MEDIUM
 CVE-2025-0993
< 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions before 17.10.7, 17.11 before 17.11.3, and 18.0 before 18.0.1.
7.5HIGH
 CVE-2025-0679
>= 17.1.0 and < 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions from 17.1 before 17.10.7, 17.11 before 17.11.3, and 18.0 befor
4.3MEDIUM
 CVE-2025-0605
>= 16.8.0 and < 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions from 16.8 before 17.10.7, 17.11 before 17.11.3, and 18.0 befor
4.6MEDIUM
 CVE-2024-12093
>= 11.1.0 and < 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions from 11.1 before 17.10.7, 17.11 before 17.11.3, and 18.0 befor
6.8MEDIUM
 CVE-2025-4979
< 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions before 17.10.7, 17.11 before 17.11.3, and 18.0 before 18.0.1.
4.9MEDIUM
 CVE-2025-3111
>= 10.2.0 and < 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions from 10.2 before 17.10.7, 17.11 before 17.11.3, and 18.0 befor
6.5MEDIUM
 CVE-2025-2853
< 17.10.7
An issue has been discovered in GitLab CE/EE affecting all versions before 17.10.7, 17.11 before 17.11.3, and 18.0 before 18.0.1.
6.5MEDIUM
 CVE-2025-1110
all versions
An issue has been discovered in GitLab CE/EE affecting all versions from 18.0 before 18.0.1. In certain circumstances, a user with
2.7LOW
 CVE-2025-1278
>= 12.0.0 and < 17.9.8
An issue has been discovered in GitLab CE/EE affecting all versions from 12.0 before 17.9.8, 17.10 before 17.10.6, and 17.11 befor
5.3MEDIUM
 CVE-2025-0549
>= 17.3.0 and < 17.9.8
An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.3 prior to 17.9.8, from 17.10 prior to 17.10.
6.8MEDIUM
 CVE-2024-8973
>= 17.1.0 and < 17.9.8
An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.1 prior to 17.9.8, from 17.10 prior to 17.10.
6.5MEDIUM
 CVE-2025-1908
>= 16.6.0 and < 17.9.7
An issue has been discovered in GitLab EE/CE that could allow an attacker to track users' browsing activities, potentially leading
7.7HIGH
 CVE-2025-0639
>= 16.7.0 and < 17.9.7
An issue has been discovered affecting service availability via issue preview in GitLab CE/EE affecting all versions from 16.7 bef
6.5MEDIUM
 CVE-2024-12244
>= 17.7.0 and < 17.9.7
An issue has been discovered in access controls could allow users to view certain restricted project information even when related
4.3MEDIUM
 CVE-2025-0362
>= 7.7.0 and < 17.8.7
An issue has been discovered in GitLab CE/EE affecting all versions from 7.7 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 1
6.4MEDIUM
 CVE-2025-2469
>= 17.9.0 and < 17.9.6
An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 17.9.6, and 17.10 before 17.10.4. The runtime
3.7LOW
 CVE-2025-2408
>= 13.12.0 and < 17.8.7
An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before
5.3MEDIUM
 CVE-2025-1677
<= 17.8.7
A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all up to 17.8.7, 17.9 prior to 17.9.6 and 17.10 pri
6.5MEDIUM
 CVE-2024-11129
>= 17.1.0 and < 17.8.7
An issue has been discovered in GitLab EE affecting all versions from 17.1 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17
6.3MEDIUM
 CVE-2024-12619
>= 16.0.0 and < 17.8.6
An issue has been discovered in GitLab CE/EE affecting all versions from 16.0 before 17.8.6, 17.9 before 17.9.3, and 17.10 before
5.2MEDIUM
 CVE-2024-10307
>= 12.10.0 and < 17.8.6
An issue has been discovered in GitLab EE/CE affecting all versions from 12.10 before 17.8.6, 17.9 before 17.9.3, and 17.10 before
4.3MEDIUM
 CVE-2025-2867
>= 17.8.0 and < 17.8.6
An issue has been discovered in the GitLab Duo with Amazon Q affecting all versions from 17.8 before 17.8.6, 17.9 before 17.9.3, a
4.4MEDIUM
 CVE-2025-2255
>= 13.5.0 and < 17.8.6
An issue has been discovered in Gitlab EE/CE for AppSec affecting all versions from 13.5.0 before 17.8.6, 17.9 before 17.9.3, and
8.7HIGH
 CVE-2025-2242
>= 17.4.0 and < 17.8.6
An improper access control vulnerability in GitLab CE/EE affecting all versions from 17.4 prior to 17.8.6, 17.9 prior to 17.9.3, a
7.5HIGH
 CVE-2025-0811
>= 17.7.0 and < 17.8.6
An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 17.8.6, 17.9 before 17.9.3, and 17.10 before
8.7HIGH
 CVE-2024-9773
>= 14.9.0 and < 17.8.6
An issue was discovered in GitLab EE affecting all versions starting from 14.9 before 17.8.6, all versions starting from 17.9 befo
3.7LOW
 CVE-2025-1257
>= 12.3.0 and < 17.7.7
An issue was discovered in GitLab EE affecting all versions starting with 12.3 before 17.7.7, 17.8 prior to 17.8.5, and 17.9 prior
6.5MEDIUM
 CVE-2025-0652
>= 16.9.0 and < 17.7.7
An issue has been discovered in GitLab EE/CE affecting all versions starting from 16.9 before 17.7.7, all versions starting from 1
4.3MEDIUM
 CVE-2024-8402
>= 17.2.0 and < 17.7.7
An issue was discovered in GitLab EE affecting all versions starting from 17.2 before 17.7.7, all versions starting from 17.8 befo
3.7LOW
 CVE-2024-7296
>= 16.5.0 and < 17.7.7
An issue was discovered in GitLab EE affecting all versions from 16.5 prior to 17.7.7, 17.8 prior to 17.8.5, and 17.9 prior to 17.
2.7LOW
 CVE-2024-13054
< 17.7.7
An issue was discovered in GitLab CE/EE affecting all versions before 17.7.7, 17.8 prior to 17.8.5, and 17.9 prior to 17.9.2. wher
6.5MEDIUM
 CVE-2024-12380
>= 11.5.0 and < 17.7.7
An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions starting from 17.8 b
4.4MEDIUM
 CVE-2025-2045
>= 17.7.0 and < 17.7.6
Improper authorization in GitLab EE affecting all versions from 17.7 prior to 17.7.6, 17.8 prior to 17.8.4, 17.9 prior to 17.9.1
4.3MEDIUM
 CVE-2025-1540
>= 17.5.0 and < 17.6.5
An issue has been discovered in GitLab CE/EE for Self-Managed and Dedicated instances affecting all versions from 17.5 prior to 17
3.1LOW
 CVE-2025-0555
>= 16.6.0 and < 17.7.6
A Cross Site Scripting (XSS) vulnerability in GitLab-EE affecting all versions from 16.6 prior to 17.7.6, 17.8 prior to 17.8.4, an
7.7HIGH
 CVE-2025-0475
>= 15.10.0 and < 17.7.6
An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 pri
8.7HIGH
 CVE-2024-10925
>= 16.2 and < 17.7.6
A vulnerability in GitLab-EE affecting all versions from 16.2 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 prior to 17.9.1 allo
5.3MEDIUM
 CVE-2024-8186
>= 16.6.0 and < 17.7.6
An issue has been discovered in GitLab CE/EE affecting all versions from 16.6 before 17.7.6, 17.8 before 17.8.4, and 17.9 before 1
5.4MEDIUM
 CVE-2024-3303
>= 16.0.0 and < 17.6.5
An issue was discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.6.5, starting from 17.7 prior to 17.7.4
6.4MEDIUM
 CVE-2025-1198
>= 16.11.0 and < 17.6.5
An issue discovered in GitLab CE/EE affecting all versions from 16.11 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.
4.2MEDIUM
 CVE-2024-8266
>= 17.1.0 and < 17.6.0
An issue was discovered in GitLab CE/EE affecting all versions starting from 17.1 prior to 17.6.0, which allows an attacker with m
4.4MEDIUM
 CVE-2024-7102
>= 16.4.0 and < 17.5.0
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.5.0 which allows an attacker to trig
9.6CRITICAL
 CVE-2025-0516
>= 17.7.0 and < 17.7.4
Improper Authorization in GitLab CE/EE affecting all versions from 17.7 prior to 17.7.4, 17.8 prior to 17.8.2 allow users with lim
4.3MEDIUM
 CVE-2024-9870
>= 15.11.0 and < 17.6.5
An external service interaction vulnerability in GitLab EE affecting all versions from 15.11 prior to 17.6.5, 17.7 prior to 17.7.4
4.3MEDIUM
 CVE-2025-1212
>= 8.3.0 and < 17.6.5
An information disclosure vulnerability in GitLab CE/EE affecting all versions from 8.3 prior to 17.6.5, 17.7 prior to 17.7.4, and
4.3MEDIUM
 CVE-2025-1042
>= 15.7.0 and < 17.6.5
An insecure direct object reference vulnerability in GitLab EE affecting all versions from 15.7 prior to 17.6.5, 17.7 prior to 17.
4.9MEDIUM
 CVE-2025-0376
>= 13.3.0 and < 17.6.5
An XSS vulnerability exists in GitLab CE/EE affecting all versions from 13.3 prior to 17.6.5, 17.7 prior to 17.7.4 and 17.8 prior
8.7HIGH
 CVE-2024-12379
>= 14.1.0 and < 17.6.5
A denial of service vulnerability in GitLab CE/EE affecting all versions from 14.1 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8
6.5MEDIUM
 CVE-2024-10383
>= 15.11.0 and < 17.3.0
An issue has been discovered in the gitlab-web-ide-vscode-fork component distributed over CDN affecting all versions prior to 1.89
8.7HIGH
 CVE-2025-1072
>= 7.14.1 and < 17.3.7
A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions starting from 7.14.1 prior to 17.3.7, 1
6.5MEDIUM
 CVE-2024-2878
>= 15.7.0 and < 16.9.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.7 prior to 16.9.7, starting from 16.10 prior
7.5HIGH
 CVE-2024-3976
>= 14.0.0 and < 16.9.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.0 prior to 16.9.7, starting from 16.10 prior
6.5MEDIUM
 CVE-2024-9631
>= 13.6.0 and < 17.2.9
An issue was discovered in GitLab CE/EE affecting all versions starting from 13.6 prior to 17.2.9, starting from 17.3 prior to 17.
7.5HIGH
 CVE-2024-5528
< 16.11.6
An issue was discovered in GitLab CE/EE affecting all versions prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting
3.5LOW
 CVE-2024-6356
>= 16.0.0 and < 17.0.6
An issue was discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.0.6, starting from 17.1 prior to 17.1.4
4.4MEDIUM
 CVE-2024-1539
>= 15.2.0 and < 16.9.7
An issue has been discovered in GitLab EE affecting all versions starting from 15.2 prior to 16.9.7, starting from 16.10 prior to
4.3MEDIUM
 CVE-2023-6386
>= 15.11.0 and < 16.6.7
A denial of service vulnerability was identified in GitLab CE/EE, affecting all versions from 15.11 prior to 16.6.7, 16.7 prior to
6.5MEDIUM
 CVE-2024-1211
>= 10.6.0 and < 16.9.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior
6.4MEDIUM
 CVE-2023-6195
>= 15.5.0 and < 16.9.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.5 prior to 16.9.7, starting from 16.10 prior
2.6LOW
 CVE-2025-0290
>= 15.0.0 and < 17.5.5
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to 17.5.5, from 17.6 prior to 17.6.3,
4.3MEDIUM
 CVE-2025-0314
>= 17.2.0 and < 17.6.4
An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.6.4, 17.7 before 17.7.3, and 17.8 before 1
8.7HIGH
 CVE-2024-11931
>= 17.0.0 and < 17.6.4
An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.6.4, from 17.7 prior to 17.7.3,
6.4MEDIUM
 CVE-2025-24397
<= 1.9.6
An incorrect permission check in Jenkins GitLab Plugin 1.9.6 and earlier allows attackers with global Item/Configure permission (w
4.3MEDIUM
 CVE-2024-13041
>= 16.4.0 and < 17.5.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.5.5, starting from 17.6 prior to 17.
4.2MEDIUM
 CVE-2024-6324
>= 15.7.0 and < 17.5.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 15.7 prior to 17.5.5, starting from 17.6 prior to 17.
4.3MEDIUM
 CVE-2024-12431
>= 15.5.0 and < 17.5.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 15.5 before 17.5.5, 17.6 before 17.6.3, and 17.7 befo
4.3MEDIUM
 CVE-2025-0194
>= 17.4.0 and < 17.5.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 17.4 prior to 17.5.5, starting from 17.6 prior to 17.
6.5MEDIUM
 CVE-2023-5117
< 17.6.0
An issue was discovered in GitLab CE/EE affecting all versions before 17.6.0 in which users were unaware that files uploaded to co
3.7LOW
 CVE-2024-8650
>= 15.0.0 and < 17.4.6
An issue was discovered in GitLab CE/EE affecting all versions from 15.0 prior to 17.4.6, 17.5 prior to 17.5.4, and 17.6 prior to
5.3MEDIUM
 CVE-2024-8116
>= 16.9.0 and < 17.4.6
An issue has been discovered in GitLab CE/EE affecting all versions from 16.9 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 1
5.3MEDIUM
 CVE-2024-9387
>= 11.8.0 and < 17.4.6
An issue was discovered in GitLab CE/EE affecting all versions from 11.8 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 17.6.2
6.4MEDIUM
 CVE-2024-9367
>= 13.9.0 and < 17.4.6
An issue was discovered in GitLab CE/EE affecting all versions starting from 13.9 before 17.4.6, 17.5 before 17.5.4, and 17.6 befo
4.3MEDIUM
 CVE-2024-8647
>= 15.2.0 and < 17.4.6
An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to 17.5.4, and 17.6 prior to 17.6.2.
5.4MEDIUM
 CVE-2024-8233
>= 9.4.0 and < 17.4.6
An issue has been discovered in GitLab CE/EE affecting all versions from 9.4 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 17
7.5HIGH
 CVE-2024-8179
>= 17.3.0 and < 17.4.6
An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 1
5.4MEDIUM
 CVE-2024-12570
>= 13.7.0 and < 17.4.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 prior to 17.4.6, from 17.5 prior to 17.5.4,
6.7MEDIUM
 CVE-2024-12292
>= 11.0.0 and < 17.4.6
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.0 prior to 17.4.6, starting from 17.5 prior to 17.
4.0MEDIUM
 CVE-2024-11274
>= 16.1.0 and < 17.4.6
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 17.4.6, starting from 17.5 prior to 17.
8.7HIGH
 CVE-2024-10043
>= 14.3.0 and < 17.4.6
An issue has been discovered in GitLab EE affecting all versions starting from 14.3 before 17.4.6, all versions starting from 17.5
3.1LOW
 CVE-2024-10240
>= 17.3.0 and < 17.3.7
An issue has been discovered in GitLab EE affecting all versions starting from 17.3 before 17.3.7, all versions starting from 17.4
5.3MEDIUM
 CVE-2024-8237
>= 12.6.0 and < 17.4.5
A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior to 12.6 prior to 17.4.5, 17.5 pri
6.5MEDIUM
 CVE-2024-8177
>= 15.6.0 and < 17.4.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 15.6 prior to 17.4.5, starting from 17.5 prior to 17.
5.3MEDIUM
 CVE-2024-8114
>= 8.12.0 and < 17.4.5
An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 1
8.2HIGH
 CVE-2024-11828
>= 13.2.4 and < 17.4.5
A denial of service (DoS) condition was discovered in GitLab CE/EE affecting all versions from 13.2.4 before 17.4.5, 17.5 before 1
4.3MEDIUM
 CVE-2024-11669
>= 16.9.8 and < 17.4.5
An issue was discovered in GitLab CE/EE affecting all versions from 16.9.8 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6
6.5MEDIUM
 CVE-2024-11668
>= 16.11.0 and < 17.4.5
An issue has been discovered in GitLab CE/EE affecting all versions from 16.11 before 17.4.5, 17.5 before 17.5.3, and 17.6 before
4.2MEDIUM
 CVE-2024-9633
>= 16.3.0 and < 17.4.2
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.3 before 17.4.2, all versions starting from 1
3.1LOW
 CVE-2024-8648
>= 16.0.0 and < 17.3.7
An issue has been discovered in GitLab CE/EE affecting all versions from 16 before 17.3.7, 17.4 before 17.4.4, and 17.5 before 17.
6.1MEDIUM
 CVE-2024-7404
>= 17.2.0 and < 17.3.7
An issue was discovered in GitLab CE/EE affecting all versions starting from 17.2 prior to 17.3.7, starting from 17.4 prior to 17.
6.8MEDIUM
 CVE-2024-9693
>= 16.0.0 and < 17.3.7
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.0 prior to 17.3.7, starting from 17.4 prior to 17.
8.5HIGH
 CVE-2024-8180
>= 17.3.0 and < 17.3.7
An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.3.7, 17.4 before 17.4.4, and 17.5 before 1
5.4MEDIUM
 CVE-2024-8312
>= 15.10.0 and < 17.3.6
An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 17.3.6, 17.4 before 17.4.3, and 17.5 before
8.7HIGH
 CVE-2024-6826
>= 11.2.0 and < 17.3.6
An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 17.3.6, 17.4 before 17.4.3, and 17.5 before 1
6.5MEDIUM
 CVE-2024-9164
>= 12.5.0 and < 17.2.9
An issue was discovered in GitLab EE affecting all versions starting from 12.5 prior to 17.2.9, starting from 17.3, prior to 17.3.
9.6CRITICAL
 CVE-2024-8970
>= 11.6.0 and < 17.2.9
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.6 prior to 17.2.9, starting from 17.3 prior to 17.
8.2HIGH
 CVE-2024-5005
>= 11.4.0 and < 17.2.9
An issue has been discovered in GitLab EE/CE affecting all versions starting from 11.4 before 17.2.9, all versions star
4.3MEDIUM
 CVE-2024-6530
>= 17.1.0 and < 17.2.9
A cross-site scripting issue has been discovered in GitLab affecting all versions starting from 17.1 prior 17.2.9, starting from 1
7.3HIGH
 CVE-2024-9623
>= 8.16.0 and < 17.2.9
An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.
4.9MEDIUM
 CVE-2024-9596
>= 16.6.0 and < 17.2.9
An issue has been discovered in GitLab EE affecting all versions starting from 16.6 prior to 17.2.9, from 17.3 prior to 17.3.5, an
3.7LOW
 CVE-2024-8977
>= 15.10 and < 17.2.9
An issue has been discovered in GitLab EE affecting all versions starting from 15.10 prior to 17.2.9, from 17.3 prior to 17.3.5, a
8.2HIGH
 CVE-2023-3441
>= 8.0.0 and < 16.4.0
An issue has been discovered in GitLab EE/CE affecting all versions starting from 8.0 before 16.4. The product did not sufficientl
6.6MEDIUM
 CVE-2024-8974
>= 15.6.0 and < 17.2.8
Information disclosure in Gitlab EE/CE affecting all versions from 15.6 prior to 17.2.8, 17.3 prior to 17.3.4, and 17.4 prior to 1
2.6LOW
 CVE-2024-4099
>= 16.0.0 and < 17.2.8
An issue has been discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.2.8, from 17.3 prior to 17.3.4, an
3.1LOW
 CVE-2024-4278
>= 16.5.0 and < 17.2.8
An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2.8, from 1
5.5MEDIUM
 CVE-2024-6685
>= 16.7.0 and < 17.1.7
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3
3.1LOW
 CVE-2024-4283
>= 11.1.0 and < 17.1.7
An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7, 17.2 before 17.2.5, and 17.3 be
6.4MEDIUM
 CVE-2024-8641
>= 13.7.0 and < 17.1.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 prior to 17.1.7, from 17.2 prior to 17.2.5,
6.7MEDIUM
 CVE-2024-8311
>= 17.2.0 and < 17.2.5
An issue was discovered with pipeline execution policies in GitLab EE affecting all versions from 17.2 prior to 17.2.5, 17.3 prior
6.5MEDIUM
 CVE-2024-6678
>= 8.14.0 and < 17.1.7
An issue was discovered in GitLab CE/EE affecting all versions starting from 8.14 prior to 17.1.7, starting from 17.2 prior to 17.
9.9CRITICAL
 CVE-2024-4472
>= 16.5.0 and < 17.1.7
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.
4.0MEDIUM
 CVE-2024-8754
>= 16.9.7 and < 17.1.7
An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 pr
6.4MEDIUM
 CVE-2024-8640
>= 16.11.0 and < 17.1.7
An issue has been discovered in GitLab EE affecting all versions starting from 16.11 prior to 17.1.7, from 17.2 prior to 17.2.5, a
8.5HIGH
 CVE-2024-8635
>= 16.8.0 and < 17.1.7
A server-side request forgery issue has been discovered in GitLab EE affecting all versions starting from 16.8 prior to 17.1.7, fr
7.7HIGH
 CVE-2024-8631
>= 16.6.0 and < 17.1.7
A privilege escalation issue has been discovered in GitLab EE affecting all versions starting from 16.6 prior to 17.1.7, from 17.2
5.5MEDIUM
 CVE-2024-8124
>= 16.4.0 and < 17.1.7
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7, starting from 17.2 prior to 17.
7.5HIGH
 CVE-2024-6446
>= 17.1.0 and < 17.1.7
An issue has been discovered in GitLab affecting all versions starting from 17.1 to 17.1.7, 17.2 prior to 17.2.5 and 17.3 prior to
3.5LOW
 CVE-2024-6389
>= 17.0.0 and < 17.1.7
An issue was discovered in GitLab-CE/EE affecting all versions starting with 17.0 before 17.1.7, 17.2 before 17.2.5, and 17.3 befo
4.3MEDIUM
 CVE-2024-5435
>= 15.10.0 and < 17.1.7
An issue has been discovered in GitLab EE/CE affecting all versions starting from 15.10 before 17.1.7, all versions sta
4.5MEDIUM
 CVE-2024-4660
>= 11.2.0 and < 17.1.7
An issue has been discovered in GitLab EE affecting all versions starting from 11.2 before 17.1.7, all versions starting from 17.2
6.5MEDIUM
 CVE-2024-4612
>= 12.9.0 and < 17.1.7
An issue has been discovered in GitLab EE affecting all versions starting from 12.9 before 17.1.7, 17.2 before 17.2.5, and 17.3 be
6.4MEDIUM
 CVE-2024-2743
>= 13.3.0 and < 17.1.7
An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2 that wou
5.3MEDIUM
 CVE-2024-45409
< 16.11.10
The Ruby SAML library is for implementing the client side of a SAML authorization. Ruby-SAML in <= 12.2 and 1.13.0 <= 1.16.0 does
10.0CRITICAL
 CVE-2024-8041
< 17.1.6
A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior to 17.1.6, 17.2 prior to 17.2.4,
6.5MEDIUM
 CVE-2024-7110
>= 17.0.0 and < 17.1.6
An issue was discovered in GitLab EE affecting all versions starting 17.0 to 17.1.6, 17.2 prior to 17.2.4, and 17.3 prior to 17.3.
6.4MEDIUM
 CVE-2024-6502
>= 8.2.0 and < 17.1.6
An issue was discovered in GitLab CE/EE affecting all versions starting from 8.2 prior to 17.1.6 starting from 17.2 prior to 17.2.
5.7MEDIUM
 CVE-2024-3127
>= 12.5.0 and < 17.1.6
An issue has been discovered in GitLab EE affecting all versions starting from 12.5 before 17.1.6, all versions starting from 17.2
4.3MEDIUM
 CVE-2024-7610
>= 15.9.0 and < 17.0.6
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions starting with 15.9 before 17.0.6, 1
4.3MEDIUM
 CVE-2024-7554
>= 13.9 and < 17.0.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.9 before 17.0.6, all versions starting from 1
4.9MEDIUM
 CVE-2024-5423
>= 1.0 and < 17.0.6
Multiple Denial of Service (DoS) conditions has been discovered in GitLab CE/EE affecting all versions starting from 1.0 prior to
6.5MEDIUM
 CVE-2024-4207
>= 5.1.0 and < 17.0.6
A cross-site scripting issue has been discovered in GitLab affecting all versions starting from 5.1 prior 17.0.6, starting from 17
4.4MEDIUM
 CVE-2024-3958
< 17.0.6
An issue has been discovered in GitLab CE/EE affecting all versions before 17.0.6, 17.1 prior to 17.1.4, and 17.2 prior to 17.2.2.
5.3MEDIUM
 CVE-2024-3114
>= 11.10.0 and < 17.0.6
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.10 prior to 17.0.6, 17.1 prior to 17.1.4, and 17.2
4.3MEDIUM
 CVE-2024-3035
>= 8.12.0 and < 17.0.6
A permission check vulnerability in GitLab CE/EE affecting all versions starting from 8.12 prior to 17.0.6, 17.1 prior to 17.1.4,
6.8MEDIUM
 CVE-2024-2800
>= 11.3.0 and < 17.0.6
ReDoS flaw in RefMatcher when matching branch names using wildcards in GitLab EE/CE affecting all versions from 11.3 prior to 17.0
6.5MEDIUM
 CVE-2024-6329
>= 8.16.0 and < 17.0.6
An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.0.6, starting from 17.1 prior to 17.
5.7MEDIUM
 CVE-2024-4784
>= 16.7.0 and < 17.0.6
An issue was discovered in GitLab EE starting from version 16.7 before 17.0.6, version 17.1 before 17.1.4 and 17.2 before 17.2.2 t
4.2MEDIUM
 CVE-2024-4210
>= 12.6.0 and < 17.0.6
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions starting with 12.6 before 17.0.6, 1
6.5MEDIUM
 CVE-2024-7057
>= 16.7 and < 17.0.5
An information disclosure vulnerability in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.0.5, starting from 1
4.3MEDIUM
 CVE-2024-7047
>= 16.6.0 and < 17.0.5
A cross site scripting vulnerability exists in GitLab CE/EE affecting all versions from 16.6 prior to 17.0.5, 17.1 prior to 17.1.3
7.7HIGH
 CVE-2024-7091
>= 15.6 and < 17.0.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 15.6 prior to 17.0.5, starting from 17.1 prior to 17.
4.1MEDIUM
 CVE-2024-7060
>= 15.4 and < 17.0.5
An information disclosure vulnerability in GitLab CE/EE in project/group exports affecting all versions from 15.4 prior to 17.0.5,
2.6LOW
 CVE-2024-5067
>= 16.11 and < 17.0.5
An issue was discovered in GitLab EE affecting all versions starting from 16.11 prior to 17.0.5, starting from 17.1 prior to 17.1.
4.4MEDIUM
 CVE-2024-0231
>= 12.0.0 and < 17.0.5
A resource misdirection vulnerability in GitLab CE/EE versions 12.0 prior to 17.0.5, 17.1 prior to 17.1.3, and 17.2 prior to 17.2.
2.7LOW
 CVE-2024-6595
>= 11.8.0 and < 16.11.6
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.8 prior to 16.11.6, starting from 17.0 prior to 17
3.0LOW
 CVE-2024-6385
>= 15.8.0 and < 16.11.6
An issue was discovered in GitLab CE/EE affecting all versions starting from 15.8 prior to 16.11.6, starting from 17.0 prior to 17
9.6CRITICAL
 CVE-2024-5470
>= 17.0.0 and < 17.0.4
An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 wh
3.8LOW
 CVE-2024-5257
>= 17.0.0 and < 17.0.4
An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 wh
4.9MEDIUM
 CVE-2024-2880
>= 16.5.0 and < 16.11.6
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 16.11.6, starting from 17.0 prior to 17
2.7LOW
 CVE-2024-2177
>= 16.3.0 and < 16.11.5
A Cross Window Forgery vulnerability exists within GitLab CE/EE affecting all versions from 16.3 prior to 16.11.5, 17.0 prior to 1
6.8MEDIUM
 CVE-2024-6323
>= 16.11.0 and < 16.11.5
Improper authorization in global search in GitLab EE affecting all versions from 16.11 prior to 16.11.5 and 17.0 prior to 17.0.3 a
7.5HIGH
 CVE-2024-5655
>= 15.8.0 and < 16.11.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 15.8 prior to 16.11.5, starting from 17.0 prior to 17
9.6CRITICAL
 CVE-2024-5430
>= 16.10.0 and < 16.11.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.10 prior to 16.11.5, starting from 17.0 prior to 1
6.8MEDIUM
 CVE-2024-4901
>= 16.9.0 and < 16.11.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.11.5, starting from 17.0 prior to 17
8.7HIGH
 CVE-2024-4557
>= 1.0.0 and < 16.11.5
Multiple Denial of Service (DoS) conditions has been discovered in GitLab CE/EE affecting all versions starting from 1.0 prior to
6.5MEDIUM
 CVE-2024-4011
>= 16.1.0 and < 16.11.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 16.11.5, starting from 17.0 prior to 17
3.1LOW
 CVE-2024-3959
>= 16.7.0 and < 16.11.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 16.11.5, starting from 17.0 prior to 17
6.5MEDIUM
 CVE-2024-3115
>= 16.0.0 and < 16.11.5
An issue was discovered in GitLab EE affecting all versions starting from 16.0 prior to 16.11.5, starting from 17.0 prior to 17.0.
4.3MEDIUM
 CVE-2024-2191
>= 16.9.0 and < 16.11.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.11.5, starting from 17.0 prior to 17
5.3MEDIUM
 CVE-2024-1816
>= 12.0 and < 16.11.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 12.0 prior to 16.11.5, starting from 17.0 prior to 17
5.3MEDIUM
 CVE-2024-1493
>= 9.2.0 and < 16.11.5
An issue was discovered in GitLab CE/EE affecting all versions starting from 9.2 prior to 16.11.5, starting from 17.0 prior to 17.
6.5MEDIUM
 CVE-2024-5469
>= 16.10.0 and < 16.10.6
DoS in KAS in GitLab CE/EE affecting all versions from 16.10.0 prior to 16.10.6 and 16.11.0 prior to 16.11.3 allows an attacker to
3.1LOW
 CVE-2024-4201
>= 5.1 and < 16.10.7
A cross-site scripting issue has been discovered in GitLab affecting all versions starting from 5.1 before 16.10.7, all versions s
4.4MEDIUM
 CVE-2024-1963
>= 8.4 and < 16.10.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.4 prior to 16.10.7, starting from 16.11 prior
6.5MEDIUM
 CVE-2024-1736
< 16.10.7
An issue has been discovered in GitLab CE/EE affecting all versions prior to 16.10.7, starting from 16.11 prior to 16.11.4, and st
6.5MEDIUM
 CVE-2024-1495
>= 13.1 and < 16.10.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.1 prior to 16.10.7, starting from 16.11 prior
6.5MEDIUM
 CVE-2024-5318
>= 11.11.0 and < 16.10.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.11 prior to 16.10.6, starting from 16.11 prio
4.0MEDIUM
 CVE-2024-5258
>= 16.10.0 and < 16.10.6
An authorization vulnerability exists within GitLab from versions 16.10 before 16.10.6, 16.11 before 16.11.3, and 17.0 before 17.0
4.4MEDIUM
 CVE-2024-1947
>= 13.2.4 and < 16.10.6
A denial of service (DoS) condition was discovered in GitLab CE/EE affecting all versions from 13.2.4 before 16.10.6, 16.11 before
4.3MEDIUM
 CVE-2023-7045
>= 13.11.0 and < 16.10.6
A CSRF vulnerability exists within GitLab CE/EE from versions 13.11 before 16.10.6, from 16.11 before 16.11.3, from 17.0 before 17
5.4MEDIUM
 CVE-2023-6502
< 16.10.6
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions before 16.10.6, version 16.11 befor
4.3MEDIUM
 CVE-2024-4835
>= 15.11.0 and < 16.10.6
A XSS condition exists within GitLab in versions 15.11 before 16.10.6, 16.11 before 16.11.3, and 17.0 before 17.0.1. By leveraging
8.0HIGH
 CVE-2024-2874
< 16.10.6
An issue has been discovered in GitLab CE/EE affecting all versions before 16.10.6, version 16.11 before 16.11.3, and 17.0 before
6.5MEDIUM
 CVE-2024-4597
>= 16.7.0 and < 16.9.7
An issue has been discovered in GitLab EE affecting all versions from 16.7 before 16.9.7, all versions starting from 16.10 before
5.7MEDIUM
 CVE-2024-4539
>= 15.4.0 and < 16.9.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 prior to 16.9.7, starting from 16.10 prior
4.3MEDIUM
 CVE-2024-2651
< 16.9.7
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.7, all versions starting from 16.10 before 16.10.5
6.5MEDIUM
 CVE-2024-2454
>= 15.11.0 and < 16.9.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 prior to 16.9.7, starting from 16.10 prior
6.5MEDIUM
 CVE-2023-6688
>= 16.11.0 and < 16.11.2
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.11 prior to 16.11.2. A problem with the proce
6.5MEDIUM
 CVE-2023-6682
>= 16.9.0 and < 16.9.7
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.9.7, starting from 16.10 prior
6.5MEDIUM
 CVE-2024-4024
>= 7.8.0 and < 16.9.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.8 before 16.9.6, all versions starting from 16
7.3HIGH
 CVE-2024-4006
>= 16.7.0 and < 16.9.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 before 16.9.6, all versions starting from 1
4.3MEDIUM
 CVE-2024-2829
>= 12.5.0 and < 16.9.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 before 16.9.6, all versions starting from 1
7.5HIGH
 CVE-2024-2434
>= 16.9.0 and < 16.9.6
An issue has been discovered in GitLab affecting all versions of GitLab CE/EE 16.9 prior to 16.9.6, 16.10 prior to 16.10.4, and 1
8.5HIGH
 CVE-2024-1347
< 16.9.6
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4
4.3MEDIUM
 CVE-2024-3092
>= 16.9.0 and < 16.9.4
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.4, all versions starting from 1
8.7HIGH
 CVE-2024-2279
>= 16.7.0 and < 16.8.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 b
8.7HIGH
 CVE-2023-6678
< 16.8.6
An issue has been discovered in GitLab EE affecting all versions before 16.8.6, all versions starting from 16.9 before 16.9.4, all
4.3MEDIUM
 CVE-2023-6489
>= 16.7.7 and < 16.8.6
A denial of service vulnerability was identified in GitLab CE/EE, versions 16.7.7 prior to 16.8.6, 16.9 prior to 16.9.4 and 16.10
4.3MEDIUM
 CVE-2024-2818
< 16.8.5
An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions starting from 16.9 before 16.9.3,
4.3MEDIUM
 CVE-2023-6371
< 16.8.5
An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions starting from 16.9 before 16.9.3,
8.7HIGH
 CVE-2024-1299
>= 16.8.0 and < 16.8.4
A privilege escalation vulnerability was discovered in GitLab affecting versions 16.8 prior to 16.8.4 and 16.9 prior to 16.9.2. It
6.5MEDIUM
 CVE-2024-0199
>= 11.3 and < 16.7.7
An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to 16.7.7, 16.7.6 prior to 16.8.4, an
7.7HIGH
 CVE-2023-4895
>= 12.0 and <= 16.76
An issue has been discovered in GitLab EE affecting all versions starting from 12.0 to 16.7.6, all versions starting from 16.8 bef
4.3MEDIUM
 CVE-2024-1525
>= 16.1 and < 16.7.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.1 before 16.7.6, all versions starting from 1
5.3MEDIUM
 CVE-2024-1451
all versions
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to
8.7HIGH
 CVE-2024-0861
>= 16.4.0 and < 16.7.6
An issue has been discovered in GitLab EE affecting all versions starting from 16.4 before 16.7.6, all versions starting from 16.8
4.3MEDIUM
 CVE-2024-0410
>= 15.1.0 and < 16.7.6
An authorization bypass vulnerability was discovered in GitLab affecting versions 15.1 prior to 16.7.6, 16.8 prior to 16.8.3, and
7.7HIGH
 CVE-2023-6477
>= 16.5.0 and < 16.7.6
An issue has been discovered in GitLab EE affecting all versions starting from 16.5 before 16.7.6, all versions starting from 16.8
6.7MEDIUM
 CVE-2023-3509
<= 16.7.6
An issue has been discovered in GitLab affecting all versions before 16.7.6, all versions starting from 16.8 before 16.8.3, all ve
3.7LOW
 CVE-2024-1250
>= 16.8.0 and < 16.8.2
An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custo
6.5MEDIUM
 CVE-2023-6564
all versions
An issue has been discovered in GitLab EE Premium and Ultimate affecting versions 16.4.3, 16.5.3, and 16.6.1. In projects using su
6.5MEDIUM
 CVE-2024-1066
>= 13.3.0 and < 16.6.7
An issue has been discovered in GitLab EE affecting all versions from 13.3.0 prior to 16.6.7, 16.7 prior to 16.7.5, and 16.8 prior
6.5MEDIUM
 CVE-2023-6840
>= 16.4.0 and < 16.6.7
An issue has been discovered in GitLab EE affecting all versions from 16.4 prior to 16.6.7, 16.7 prior to 16.7.5, and 16.8 prior t
6.7MEDIUM
 CVE-2023-6736
>= 11.3.0 and < 16.7.6
An issue has been discovered in GitLab EE affecting all versions starting from 11.3 before 16.7.6, all versions starting from 16.8
6.5MEDIUM
 CVE-2023-6159
>= 12.7.0 and < 16.6.6
An issue has been discovered in GitLab CE/EE affecting all versions from 12.7 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prio
6.5MEDIUM
 CVE-2023-5612
< 16.6.6
An issue has been discovered in GitLab affecting all versions before 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1. It wa
5.3MEDIUM
 CVE-2024-0456
>= 14.0.0 and < 16.6.6
An authorization vulnerability exists in GitLab versions 14.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1. An
4.3MEDIUM
 CVE-2024-0402
>= 16.0.0 and < 16.5.8
An issue has been discovered in GitLab CE/EE affecting all versions from 16.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prio
9.9CRITICAL
 CVE-2023-5933
>= 13.7.0 and < 16.6.6
An issue has been discovered in GitLab CE/EE affecting all versions after 13.7 before 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior
6.4MEDIUM
 CVE-2023-7028
>= 16.1.0 and < 16.1.6
An issue has been discovered in GitLab CE/EE affecting all versions from 16.1 prior to 16.1.6, 16.2 prior to 16.2.9, 16.3 prior to
10.0CRITICAL
 CVE-2023-6955
< 16.5.6
A missing authorization check vulnerability exists in GitLab Remote Development affecting all versions prior to 16.5.6, 16.6 prior
6.6MEDIUM
 CVE-2023-5356
>= 8.13.0 and < 16.5.6
Incorrect authorization checks in GitLab CE/EE from all versions starting from 8.13 before 16.5.6, all versions starting from 16.6
7.3HIGH
 CVE-2023-4812
>= 15.3.0 and < 16.5.5
An issue has been discovered in GitLab EE affecting all versions starting from 15.3 before 16.5.6, all versions starting from 16.6
7.6HIGH
 CVE-2023-2030
>= 12.2.0 and < 16.5.6
An issue has been discovered in GitLab CE/EE affecting all versions from 12.2 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prio
3.5LOW
 CVE-2023-3907
>= 16.0.0 and < 16.4.4
A privilege escalation vulnerability in GitLab EE affecting all versions from 16.0 prior to 16.4.4, 16.5 prior to 16.5.4, and 16.6
4.9MEDIUM
 CVE-2023-6680
>= 11.6 and < 16.4.4
An improper certificate validation issue in Smartcard authentication in GitLab EE affecting all versions from 11.6 prior to 16.4.4
7.4HIGH
 CVE-2023-6051
< 16.4.4
An issue has been discovered in GitLab CE/EE affecting all versions before 16.4.4, all versions starting from 16.5 before 16.5.4,
5.7MEDIUM
 CVE-2023-5512
>= 16.3.0 and < 16.4.4
An issue has been discovered in GitLab CE/EE affecting all versions from 16.3 before 16.4.4, all versions starting from 16.5 befor
4.8MEDIUM
 CVE-2023-5061
>= 9.3.0 and < 16.4.4
An issue has been discovered in GitLab affecting all versions starting from 9.3 before 16.4.4, all versions starting from 16.5 bef
4.3MEDIUM
 CVE-2023-3904
< 16.4.4
An issue has been discovered in GitLab EE affecting all versions starting before 16.4.4, all versions starting from 16.5 before 16
4.3MEDIUM
 CVE-2023-3511
>= 8.17 and < 16.4.4
An issue has been discovered in GitLab EE affecting all versions starting from 8.17 before 16.4.4, all versions starting from 16.5
2.0LOW
 CVE-2023-5332
>= 9.5.0 and < 16.2.8
Patch in third party library Consul requires 'enable-script-checks' to be set to False. This was required to enable a patch by the
5.9MEDIUM
 CVE-2023-6033
>= 15.10 and < 16.6.1
Improper neutralization of input in Jira integration configuration in GitLab CE/EE, affecting all versions from 15.10 prior to 16.
8.7HIGH
 CVE-2023-5995
>= 16.2.0 and < 16.4.3
An issue has been discovered in GitLab EE affecting all versions starting from 16.2 before 16.4.3, all versions starting from 16.5
4.4MEDIUM
 CVE-2023-5226
< 16.4.3
An issue has been discovered in GitLab affecting all versions before 16.4.3, all versions starting from 16.5 before 16.5.3, all ve
4.8MEDIUM
 CVE-2023-4912
>= 10.5.0 and < 16.4.3
An issue has been discovered in GitLab EE affecting all versions starting from 10.5 before 16.4.3, all versions starting from 16.5
2.6LOW
 CVE-2023-4658
>= 8.13.0 and < 16.4.3
An issue has been discovered in GitLab EE affecting all versions starting from 8.13 before 16.4.3, all versions starting from 16.5
3.1LOW
 CVE-2023-4317
>= 9.2.0 and < 16.4.3
An issue has been discovered in GitLab affecting all versions starting from 9.2 before 16.4.3, all versions starting from 16.5 bef
4.3MEDIUM
 CVE-2023-3964
>= 13.2.0 and < 16.4.3
An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3, all versions starting from 16.5 be
4.3MEDIUM
 CVE-2023-3949
>= 11.3.0 and < 16.4.3
An issue has been discovered in GitLab affecting all versions starting from 11.3 before 16.4.3, all versions starting from 16.5 be
5.3MEDIUM
 CVE-2023-3443
>= 12.1.0 and < 16.4.3
An issue has been discovered in GitLab affecting all versions starting from 12.1 before 16.4.3, all versions starting from 16.5 be
3.1LOW
 CVE-2023-4379
>= 15.3.0 and < 16.2.8
An issue has been discovered in GitLab EE affecting all versions starting from 15.3 prior to 16.2.8, 16.3 prior to 16.3.5, and 16.
8.1HIGH
 CVE-2023-4700
>= 14.7.0 and < 16.3.6
An authorization issue affecting GitLab EE affecting all versions from 14.7 prior to 16.3.6, 16.4 prior to 16.4.2, and 16.5 prior
3.5LOW
 CVE-2023-5963
>= 13.9.0 and <= 16.3.6
An issue has been discovered in GitLab EE with Advanced Search affecting all versions from 13.9 to 16.3.6, 16.4 prior to 16.4.2 an
3.1LOW
 CVE-2023-3909
>= 12.3.0 and < 16.3.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.3 before 16.3.6, all versions starting from 1
4.3MEDIUM
 CVE-2023-3399
>= 11.6.0 and < 12.9.8
An issue has been discovered in GitLab EE affecting all versions starting from 11.6 before 16.3.6, all versions starting from 16.4
8.5HIGH
 CVE-2023-3246
< 16.3.6
An issue has been discovered in GitLab EE/CE affecting all versions starting before 16.3.6, all versions starting from 16.4 before
4.3MEDIUM
 CVE-2023-5831
>= 16.0.0 and < 16.3.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 1
3.7LOW
 CVE-2023-5825
>= 16.2.0 and < 16.3.6
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.2 before 16.3.6, all versions starting from 1
6.5MEDIUM
 CVE-2023-5106
>= 13.12 and < 16.2.8
An issue has been discovered in Ultimate-licensed GitLab EE affecting all versions starting 13.12 prior to 16.2.8, 16.3.0 prior to
8.2HIGH
 CVE-2023-5207
>= 16.0.0 and < 16.2.8
A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to 16.2.8, 16.3 prior to 16.3.5, and
8.2HIGH
 CVE-2023-3413
>= 16.2 and < 16.2.8
An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.8, all versions starting from 16.3 be
6.5MEDIUM
 CVE-2023-5198
>= 8.15 and < 16.2.8
An issue has been discovered in GitLab affecting all versions prior to 16.2.7, all versions starting from 16.3 before 16.3.5, and
4.3MEDIUM
 CVE-2023-3922
>= 8.15 and < 16.2.8
An issue has been discovered in GitLab affecting all versions starting from 8.15 before 16.2.8, all versions starting from 16.3 be
3.0LOW
 CVE-2023-4532
>= 16.2 and < 16.2.8
An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.8, all versions starting from 16.3 be
4.3MEDIUM
 CVE-2023-3979
>= 10.6 and < 16.2.8
An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.2.8, all versions starting from 16.3 be
3.1LOW
 CVE-2023-3920
>= 11.2 and < 16.2.8
An issue has been discovered in GitLab affecting all versions starting from 11.2 before 16.2.8, all versions starting from 16.3 be
4.3MEDIUM
 CVE-2023-3917
< 16.2.8
Denial of Service in pipelines affecting all versions of Gitlab EE and CE prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to
4.3MEDIUM
 CVE-2023-3914
< 16.2.8
A business logic error in GitLab EE affecting all versions prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1 allows
5.4MEDIUM
 CVE-2023-3906
>= 12.3 and < 16.2.8
An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior to 16.2.8, 16.3 prior to 16.3.5,
3.5LOW
 CVE-2023-3115
>= 11.11 and < 16.2.8
An issue has been discovered in GitLab EE affecting all versions affecting all versions from 11.11 prior to 16.2.8, 16.3 prior to
5.4MEDIUM
 CVE-2023-2233
>= 11.8 and < 16.2.8
An improper authorization issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.2.8, all v
3.1LOW
 CVE-2023-0989
>= 13.11 and < 16.2.8
An information disclosure issue in GitLab CE/EE affecting all versions starting from 13.11 prior to 16.2.8, 16.3 prior to 16.3.5,
4.3MEDIUM
 CVE-2023-5009
>= 13.12 and < 16.2.7
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2.7, all versions starting from 16.
8.2HIGH
 CVE-2023-4630
>= 10.6.0 and < 16.1.5
An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.1.5, all versions starting from 16.2 be
5.0MEDIUM
 CVE-2023-4647
>= 15.2.0 and < 16.1.5
An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5, all versions starting from 16.2 be
5.3MEDIUM
 CVE-2023-4378
>= 11.8.0 and < 16.1.5
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 1
5.5MEDIUM
 CVE-2023-4018
>= 16.2 and < 16.2.5
An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 be
4.3MEDIUM
 CVE-2023-3950
>= 16.2 and < 16.2.5
An information disclosure issue in GitLab EE affecting all versions from 16.2 prior to 16.2.5, and 16.3 prior to 16.3.1 allowed ot
5.5MEDIUM
 CVE-2023-3915
>= 16.1.0 and < 16.1.5
An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5, all versions starting from 16.2
6.5MEDIUM
 CVE-2023-3210
>= 15.11 and < 16.1.5
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5, all versions starting from 16.2 b
6.5MEDIUM
 CVE-2023-3205
>= 15.11 and < 16.1.5
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5, all versions starting from 16.2 b
6.5MEDIUM
 CVE-2023-1555
>= 15.2.0 and < 16.1.5
An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5, all versions starting from 16.2 be
2.7LOW
 CVE-2023-1279
>= 4.1.0 and < 16.1.5
An issue has been discovered in GitLab affecting all versions starting from 4.1 before 16.1.5, all versions starting from 16.2 bef
2.6LOW
 CVE-2023-0120
>= 10.0.0 and < 16.1.5
An issue has been discovered in GitLab affecting all versions starting from 10.0 before 16.1.5, all versions starting from 16.2 be
3.5LOW
 CVE-2022-4343
>= 13.12 and < 16.1.5
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.1.5, all versions starting from 16.
5.0MEDIUM
 CVE-2023-4522
< 16.2.0
An issue has been discovered in GitLab affecting all versions before 16.2.0. Committing directories containing LF character result
4.3MEDIUM
 CVE-2023-4002
>= 14.1.0 and < 16.0.8
An issue has been discovered in GitLab EE affecting all versions starting from 14.1 before 16.0.8, all versions starting from 16.1
5.3MEDIUM
 CVE-2023-4008
>= 15.9.0 and < 16.0.8
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.9 before 16.0.8, all versions starting from 1
5.3MEDIUM
 CVE-2023-3932
>= 13.12.0 and < 16.0.8
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.0.8, all versions starting from 16.
8.2HIGH
 CVE-2023-3401
< 16.0.8
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all ve
4.8MEDIUM
 CVE-2023-2022
< 16.0.8
An issue has been discovered in GitLab CE/EE affecting all versions starting before 16.0.8, all versions starting from 16.1 before
4.3MEDIUM
 CVE-2023-4011
>= 15.11 and < 16.2.2
An issue has been discovered in GitLab EE affecting all versions from 15.11 prior to 16.2.2 which allows an attacker to spike the
4.3MEDIUM
 CVE-2023-3994
>= 9.3 and < 16.0.8
An issue has been discovered in GitLab CE/EE affecting all versions starting from 9.3 before 16.0.8, all versions starting from 16
7.5HIGH
 CVE-2023-3993
>= 14.3 and < 16.0.8
An issue has been discovered in GitLab EE affecting all versions starting from 14.3 before 16.0.8, all versions starting from 16.1
4.9MEDIUM
 CVE-2023-3900
>= 16.1 and < 16.1.3
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.1 before 16.1.3, all versions starting from 1
4.3MEDIUM
 CVE-2023-3500
>= 10.0 and < 16.0.8
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.0 before 16.0.8, all versions starting from 1
4.8MEDIUM
 CVE-2023-3385
>= 8.10 and < 16.0.8
An issue has been discovered in GitLab affecting all versions starting from 8.10 before 16.0.8, all versions starting from 16.1 be
6.3MEDIUM
 CVE-2023-3364
>= 8.14 and < 16.0.8
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14 before 16.0.8, all versions starting from 1
7.5HIGH
 CVE-2023-2164
>= 15.9 and < 16.0.8
An issue has been discovered in GitLab affecting all versions starting from 15.9 before 16.0.8, all versions starting from 16.1 be
5.4MEDIUM
 CVE-2023-1210
>= 12.9 and < 16.0.8
An issue has been discovered in GitLab affecting all versions starting from 12.9 before 16.0.8, all versions starting from 16.1 be
3.1LOW
 CVE-2023-0632
>= 15.2 and < 16.0.8
An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.0.8, all versions starting from 16.1 be
6.5MEDIUM
 CVE-2023-1401
>= 3.0.29 and < 4.0.5
An issue has been discovered in GitLab DAST scanner affecting all versions starting from 3.0.29 before 4.0.5, in which the DAST sc
5.0MEDIUM
 CVE-2023-3102
>= 16.0.0 and < 16.0.6
A sensitive information leak issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.0.6, all v
5.3MEDIUM
 CVE-2023-3484
>= 12.8.0 and < 15.11.11
An issue has been discovered in GitLab EE affecting all versions starting from 12.8 before 15.11.11, all versions starting from 16
8.0HIGH
 CVE-2023-3444
>= 15.3.0 and < 15.11.10
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.3 before 15.11.10, all versions starting from
5.7MEDIUM
 CVE-2023-3424
>= 10.3.0 and < 15.11.10
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.3 before 15.11.10, all versions starting from
7.5HIGH
 CVE-2023-3363
>= 13.6 and < 15.11.10
An information disclosure issue in Gitlab CE/EE affecting all versions from 13.6 prior to 15.11.10, all versions from 16.0 prior t
3.9LOW
 CVE-2023-3362
>= 16.0.0 and < 16.0.6
An information disclosure issue in GitLab CE/EE affecting all versions from 16.0 prior to 16.0.6, and version 16.1.0 allows unauth
5.3MEDIUM
 CVE-2023-2620
>= 15.1.0 and < 15.11.10
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 prior to 15.11.10, all versions from 16.0 p
5.5MEDIUM
 CVE-2023-2576
>= 13.7.0 and < 15.11.10
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15.11.10, all versions starting from
4.3MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin