CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

505 matches found

BIT-GITLAB-2026-6976 Authorization Bypass Through User-Controlled Key in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user with developer-role permissions to hide changes from merge request diff views due to...

3.7CVSS5.4AI score0.00247EPSS

Exploits0References4

NCSC•added 5 days ago•7 views

Vulnerabilities managed in GitLab Enterprise Edition

GitLab has identified several vulnerabilities in the GitLab Community Edition and Enterprise Edition versions, ranging from 12.0 to 19.0.2, including important releases such as 17.x, 18.10.8, 18.11.5, and 19.0.2. These vulnerabilities affect various components of GitLab CE & EE. Authorized users...

8.7CVSS5.9AI score0.00635EPSS

Exploits0References1

Tenable Nessus•added 5 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-6976

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain...

3.7CVSS5.5AI score0.00247EPSS

Exploits0References2

NVD•added 6 days ago•9 views

CVE-2026-6976

3.7CVSS0.00247EPSS

Exploits0References3

OSV•added 6 days ago•4 views

UBUNTU-CVE-2026-6976

3.7CVSS5.3AI score0.00247EPSS

Exploits0References5

Cvelist•added 6 days ago•20 views

CVE-2026-6976 Authorization Bypass Through User-Controlled Key in GitLab

3.7CVSS0.00247EPSS

Exploits0References3

EUVD•added 6 days ago•6 views

EUVD-2026-36228

3.7CVSS5.5AI score0.00247EPSS

Exploits0References3

CVE•added 6 days ago•37 views

CVE-2026-6976

GitLab CVE-2026-6976 affects GitLab CE/EE with versions 15.9–1x prior to 18.10.8, 18.11 prior to 18.11.5, and 19.0 prior to 19.0.2. An authenticated user with developer permissions could, under certain conditions, hide changes in merge request diff views due to improper input handling of file nam...

3.7CVSS5.5AI score0.00247EPSS

Exploits0References3Affected Software1

Vulnrichment•added 6 days ago•4 views

CVE-2026-6976 Authorization Bypass Through User-Controlled Key in GitLab

3.7CVSS5.5AI score0.00247EPSS

Exploits0References3

Positive Technologies•added 6 days ago•7 views

PT-2026-48652

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 15.9 through 18.10.7 GitLab CE/EE versions 18.11 through 18.11.4 GitLab CE/EE versions 19.0 through 19.0.1 Description Improper input handling of file names allows an authenticated user with developer-role permissions to...

3.7CVSS5.2AI score0.00247EPSS

Exploits0References6

Tenable Nessus•added 6 days ago•6 views

GitLab 15.9 < 18.10.8 / 18.11 < 18.11.5 / 19.0 < 19.0.2 (CVE-2026-6976)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an...

3.7CVSS5.4AI score0.00247EPSS

Exploits0References5

CNNVD•added 6 days ago•3 views

GitLab Enterprise Edition（EE）和GitLab Community Edition（CE）安全漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of the American company GitLab. GitLab Enterprise Edition is a content management system. GitLab Community Edition is a community version of GitLab. Versions of GitLab CE/EE prior to 15.9, 18.10.8, 18.11.5, and 19.0.2...

3.7CVSS5.3AI score0.00247EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:47 p.m.•4 views

CVE-2026-6883

GitLab has remediated an issue in GitLab EE affecting all versions from 15.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to bypass merge request approval requirements due to improper cleanup of orphaned policy records...

4.3CVSS5.5AI score0.00146EPSS

Exploits0References1

Microsoft CVE•added 2026/05/28 8:5 a.m.•4 views

net: rds: fix MR cleanup on copy error

...

7.8CVSS5.4AI score0.00129EPSS

Exploits0

Tenable Nessus•added 2026/05/22 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-6063

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab EE affecting all versions from 11.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that under certain...

4.3CVSS5.9AI score0.0019EPSS

Exploits0References2

Tenable Nessus•added 2026/05/22 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-6883

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab EE affecting all versions from 15.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allow...

4.3CVSS5.8AI score0.00146EPSS

Exploits0References2

OSV•added 2026/05/18 6:11 a.m.•7 views

BIT-GITLAB-2026-6883 Missing Authorization in GitLab

4.3CVSS5.8AI score0.00146EPSS

Exploits0References3

NCSC•added 2026/05/15 9:27 a.m.•62 views

Vulnerabilities are handled in GitLab through GitLab Inc.

GitLab Inc. has addressed several vulnerabilities in GitLab Community Edition CE and Enterprise Edition EE in various versions, particularly in releases from version 8.3 to 18.11.3. These vulnerabilities concern various components and functions within GitLab, including Jira integration, container...

8.7CVSS5.8AI score0.00355EPSS

Exploits1References1

NVD•added 2026/05/14 6:16 a.m.•3 views

CVE-2026-6883

4.3CVSS0.00146EPSS

Exploits0References2