Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21284 matches found

NCSC
NCSCadded 2026/05/28 6:49 a.m.18 views

Vulnerabilities are handled in GitLab Community Edition and Enterprise Edition

GitLab has identified several vulnerabilities in the GitLab Community Edition and Enterprise Edition, specifically in versions 12.7 through 18.10.7, 18.11 through 18.11.4, and 19.0 through 19.0.1. These vulnerabilities relate to various aspects of authentication, authorization, and validation...

8.2CVSS5.7AI score0.00064EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/05/28 12:0 a.m.16 views

GitLab 11.5 < 18.10.7 / 18.11 < 18.11.4 / 19.0 < 19.0.1 (CVE-2026-2601)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing Authorization in GitLab CVE-2026-2601 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenabl...

4.3CVSS5.8AI score0.00011EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/28 12:0 a.m.9 views

GitLab 18.7 < 18.10.7 / 18.11 < 18.11.4 / 19.0 < 19.0.1 (CVE-2026-5296)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing Authorization in GitLab CVE-2026-5296 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenabl...

4.3CVSS5.8AI score0.00012EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/28 12:0 a.m.11 views

GitLab 18.2 < 18.10.7 / 18.11 < 18.11.4 / 19.0 < 19.0.1 (CVE-2026-6713)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Incorrect Authorization in GitLab CVE-2026-6713 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

5.3CVSS5.8AI score0.00019EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/28 12:0 a.m.28 views

GitLab 17.1 < 18.10.7 / 18.11 < 18.11.4 / 19.0 < 19.0.1 (CVE-2026-1402)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Allocation of Resources Without Limits or Throttling in GitLab CVE-2026-1402 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version numbe...

6.5CVSS5.8AI score0.00064EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/28 12:0 a.m.9 views

GitLab 12.7 < 18.10.7 / 18.11 < 18.11.4 / 19.0 < 19.0.1 (CVE-2026-8716)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Use of Incorrectly-Resolved Name or Reference in GitLab CVE-2026-8716 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

4.3CVSS5.8AI score0.00027EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/05/28 12:0 a.m.10 views

GitLab 18.8 < 18.10.7 / 18.11 < 18.11.4 / 19.0 < 19.0.1 (CVE-2026-4868)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Authorization Bypass Through User-Controlled Key in GitLab CVE-2026-4868 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

8.2CVSS5.8AI score0.00012EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/05/28 12:0 a.m.6 views

GitLab 安全漏洞

GitLab is an end-to-end software development platform provided by the American company GitLab. It includes built-in features such as version control, issue tracking, code review, and CI/CD Continuous Integration and Delivery. Vulnerabilities exist in versions of GitLab CE/EE before 18.10.7,...

4.3CVSS5.9AI score0.00014EPSS
Exploits0References3
NVD
NVDadded 2026/05/27 7:16 p.m.7 views

CVE-2026-8716

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.7 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to access CI data from a different ref type than intended...

4.3CVSS0.00027EPSS
Exploits0References2
NVD
NVDadded 2026/05/27 7:16 p.m.10 views

CVE-2026-4868

GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that, under certain conditions, could have allowed an authenticated user to cause specific Duo AI workflows to run under another user's identity due to imprope...

8.2CVSS0.00012EPSS
Exploits0References3
NVD
NVDadded 2026/05/27 7:16 p.m.12 views

CVE-2026-6713

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an unauthorized user to enumerate private projects due to incorrect authorization checks...

5.3CVSS0.00019EPSS
Exploits0References3
NVD
NVDadded 2026/05/27 7:16 p.m.8 views

CVE-2026-5296

GitLab has remediated an issue in GitLab EE affecting all versions from 18.7 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that when foundational flows were enabled at the group level, could have allowed an authenticated user with developer-role permissions to bypass flow...

4.3CVSS0.00012EPSS
Exploits0References3
NVD
NVDadded 2026/05/27 7:16 p.m.9 views

CVE-2026-1402

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to cause denial of service due to insufficient validation...

6.5CVSS0.00064EPSS
Exploits0References3
OSV
OSVadded 2026/05/27 7:16 p.m.5 views

UBUNTU-CVE-2026-5296

GitLab has remediated an issue in GitLab EE affecting all versions from 18.7 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that when foundational flows were enabled at the group level, could have allowed an authenticated user with developer-role permissions to bypass flow...

4.3CVSS5.8AI score0.00012EPSS
Exploits0References5
OSV
OSVadded 2026/05/27 7:16 p.m.3 views

UBUNTU-CVE-2026-4868

GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that, under certain conditions, could have allowed an authenticated user to cause specific Duo AI workflows to run under another user's identity due to imprope...

8.2CVSS5.8AI score0.00012EPSS
Exploits0References5
OSV
OSVadded 2026/05/27 7:16 p.m.4 views

UBUNTU-CVE-2026-2601

GitLab has remediated an issue in GitLab EE affecting all versions from 11.5 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user with developer-role permissions to access sensitive deployment data on projects due to...

4.3CVSS5.8AI score0.00011EPSS
Exploits0References5
OSV
OSVadded 2026/05/27 7:16 p.m.6 views

UBUNTU-CVE-2026-1402

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to cause denial of service due to insufficient validation...

6.5CVSS5.8AI score0.00064EPSS
Exploits0References5
OSV
OSVadded 2026/05/27 7:16 p.m.3 views

UBUNTU-CVE-2026-8716

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.7 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to access CI data from a different ref type than intended...

4.3CVSS5.8AI score0.00027EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/27 5:55 p.m.9 views

EUVD-2026-32622

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to cause denial of service due to insufficient validation...

6.5CVSS5.8AI score0.00064EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/05/27 5:55 p.m.8 views

CVE-2026-1402 Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed an authenticated user to cause denial of service due to insufficient validation...

6.5CVSS5.8AI score0.00064EPSS
Exploits0References3
Rows per page
Query Builder