CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

UbuntuCve•added 2026/03/30 12:16 a.m.•3 views

CVE-2026-2370

8.8CVSS6.6AI score0.0001EPSS

OSV•added 2026/03/30 12:16 a.m.•4 views

UBUNTU-CVE-2026-2370

8.8CVSS5.8AI score0.0001EPSS

Exploits0References5

Tenable Nessus•added 2026/03/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-14513

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.11 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allow...

7.5CVSS5.9AI score0.00037EPSS

Tenable Nessus•added 2026/03/30 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2025-12576

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.3 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that under certain...

6.5CVSS5.9AI score0.00056EPSS

Tenable Nessus•added 2026/03/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-13690

6.5CVSS5.9AI score0.00094EPSS

Tenable Nessus•added 2026/03/30 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-13436

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.7 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have...

6.5CVSS5.9AI score0.00056EPSS

Tenable Nessus•added 2026/03/30 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-12697

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.5 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowe...

4.4CVSS5.9AI score0.00015EPSS

Tenable Nessus•added 2026/03/30 12:0 a.m.•5 views

FreeBSD : Gitlab -- vulnerabilities (b933083e-2b2e-11f1-b60a-2cf05da270f3)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the b933083e-2b2e-11f1-b60a-2cf05da270f3 advisory. Gitlab reports: Improper Handling of Parameters issue in Jira Connect installations impacts...

8.8CVSS6.7AI score0.00242EPSS

Exploits0References14

Tenable Nessus•added 2026/03/30 12:0 a.m.•8 views

GitLab 14.3 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-2370)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 affecting Jira Connect installations that could have allowed...

8.8CVSS6.7AI score0.0001EPSS

Exploits0References5

ATTACKERKB•added 2026/03/29 11:33 p.m.•3 views

CVE-2026-2370

8.1CVSS5.9AI score0.0001EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/03/29 11:33 p.m.•27 views

CVE-2026-2370 Improper Handling of Parameters in GitLab

8.1CVSS0.0001EPSS

CVE•added 2026/03/29 11:33 p.m.•22 views

CVE-2026-2370

CVE-2026-2370 affects GitLab CE/EE across multiple older branches (14.3 before 18.8.7, 18.9 before 18.9.3, 18.10 before 18.10.1) and relates to Jira Connect installations. The issue allowed an authenticated user with minimal workspace permissions to obtain installation credentials and impersonate...

8.8CVSS5.9AI score0.0001EPSS

Exploits0References3Affected Software1

Debian CVE•added 2026/03/29 11:33 p.m.•5 views

CVE-2026-2370

Removed by vendor...

8.8CVSS6.6AI score0.0001EPSS

Exploits0

Vulnrichment•added 2026/03/29 11:33 p.m.•2 views

CVE-2026-2370 Improper Handling of Parameters in GitLab

8.1CVSS5.9AI score0.0001EPSS

CNNVD•added 2026/03/29 12:0 a.m.•5 views

GitLab 安全漏洞

GitLab is an end-to-end software development platform provided by the American company GitLab. It includes built-in features such as version control, issue tracking, code review, and CI/CD Continuous Integration and Delivery. Vulnerabilities exist in versions of GitLab CE/EE before 18.8.7, 18.9.3...

8.8CVSS6.7AI score0.0001EPSS

OSV•added 2026/03/27 12:15 p.m.•3 views

BIT-GITLAB-2026-4363 Incorrect Authorization in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 18.1 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that under certain conditions could have allowed an authenticated user to gain unauthorized access to resources due to improper caching of authorization decisio...

3.7CVSS5.9AI score0.00019EPSS

OSV•added 2026/03/27 12:15 p.m.•2 views

BIT-GITLAB-2026-3857 Cross-Site Request Forgery (CSRF) in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed an unauthenticated user to execute arbitrary GraphQL mutations on behalf of authenticated users due to insufficient CSRF protection...

8.8CVSS6.1AI score0.00014EPSS

OSV•added 2026/03/27 12:15 p.m.•4 views

BIT-GITLAB-2026-2995 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed an authenticated user to add email addresses to targeted user accounts due to improper sanitization of HTML content...

7.7CVSS5.9AI score0.00085EPSS