CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

163 matches found

OSV•added 2026/05/18 6:11 a.m.•6 views

BIT-GITLAB-2026-4524 Authentication Bypass Using an Alternate Path or Channel in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to access confidential issue content in public projects without proper authorization due to improper...

6.5CVSS5.8AI score0.00012EPSS

Exploits0References4

NVD•added 2026/05/14 6:16 a.m.•5 views

CVE-2026-4524

6.5CVSS0.00012EPSS

Exploits0References3

OSV•added 2026/05/14 6:16 a.m.•2 views

UBUNTU-CVE-2026-4524

6.5CVSS5.8AI score0.00012EPSS

Exploits0References5

UbuntuCve•added 2026/05/14 6:16 a.m.•2 views

CVE-2026-4524

6.5CVSS5.8AI score0.00012EPSS

Exploits0References4

CVE•added 2026/05/14 5:34 a.m.•10 views

CVE-2026-4524

GitLab CVE-2026-4524 affects GitLab CE/EE versions: 18.9.1 prior to 18.9.7, 18.10 prior to 18.10.6, and 18.11 prior to 18.11.3. An authenticated user could access confidential issue content in public projects due to improper authorization checks. The issue has been remediated in the patched relea...

6.5CVSS5.8AI score0.00012EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2026/05/14 5:34 a.m.•4 views

CVE-2026-4524

6.5CVSS5.8AI score0.00012EPSS

Exploits0References4Affected Software1

EUVD•added 2026/05/14 5:34 a.m.•4 views

EUVD-2026-30229

6.5CVSS5.8AI score0.00012EPSS

Exploits0References3

Cvelist•added 2026/05/14 5:34 a.m.•28 views

CVE-2026-4524 Authentication Bypass Using an Alternate Path or Channel in GitLab

6.5CVSS0.00012EPSS

Exploits0References3

CNNVD•added 2026/05/14 12:0 a.m.•4 views

GitLab 安全漏洞

GitLab is an end-to-end software development platform provided by the American company GitLab. It includes built-in features such as version control, issue tracking, code review, and CI/CD Continuous Integration and Delivery. Vulnerabilities exist in versions of GitLab CE/EE 18.9.1 to 18.9.7, 18....

6.5CVSS5.9AI score0.00012EPSS

Exploits0References1

Positive Technologies•added 2026/05/14 12:0 a.m.•4 views

PT-2026-40866

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 18.9.1 through 18.9.6 GitLab CE/EE versions 18.10 through 18.10.5 GitLab CE/EE versions 18.11 through 18.11.2 Description Improper authorization checks could allow an authenticated user to access confidential issue conten...

6.5CVSS5.8AI score0.00012EPSS

Exploits0References5

OSV•added 2026/04/24 9:11 a.m.•2 views

BIT-GITLAB-2026-5377 Incorrect Authorization in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.1 that could have allowed an authenticated user to access titles of confidential or private issues in public projects due to improper access control in the issue description rendering process...

4.3CVSS5.4AI score0.00017EPSS

Exploits0References4

EUVD•added 2026/04/22 6:31 p.m.•0 views

EUVD-2026-25044

4.3CVSS5.8AI score0.00017EPSS

Exploits0References4

ATTACKERKB•added 2026/04/22 4:4 p.m.•0 views

CVE-2026-5377

4.3CVSS5.8AI score0.00017EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/04/22 4:4 p.m.•22 views

CVE-2026-5377 Incorrect Authorization in GitLab

4.3CVSS0.00017EPSS

Exploits0References3

Vulnrichment•added 2026/04/22 4:4 p.m.•1 views

CVE-2026-5377 Incorrect Authorization in GitLab

4.3CVSS5.8AI score0.00017EPSS

Exploits0References3

CVE•added 2026/04/22 4:4 p.m.•32 views

CVE-2026-5377

Summary: CVE-2026-5377 affects GitLab CE/EE prior to 18.11.1. The vulnerability arises from improper access control in the issue description rendering process, which could allow an authenticated user to view titles of confidential or private issues in public projects. Affected versions: GitLab 18...

4.3CVSS5.8AI score0.00017EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/04/22 12:0 a.m.•2 views

PT-2026-34519

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 18.11 through 18.11.0 Description Improper access control in the issue description rendering process could allow an authenticated user to access titles of confidential or private issues within public projects...

4.3CVSS5.2AI score0.00017EPSS

Exploits0References6

Tenable Nessus•added 2026/04/22 12:0 a.m.•4 views

GitLab 18.11 < 18.11.1 (CVE-2026-5377)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.1 that could have allowed an authenticated user to access titles of confidential or private issues in publ...

4.3CVSS5.6AI score0.00017EPSS

Exploits0References5

CNNVD•added 2026/04/22 12:0 a.m.•2 views

GitLab 安全漏洞

GitLab is an end-to-end software development platform provided by the American company GitLab. It includes built-in features such as version control, issue tracking, code review, and CI/CD Continuous Integration and Delivery. Versions of GitLab CE/EE prior to 18.11.1 contained a security...

4.3CVSS5.9AI score0.00017EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 3:10 p.m.•1 views

CVE-2026-1182

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.14 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to gain unauthorized access to confidential issue title created in public projects under certain circumstances...

4.3CVSS5.8AI score0.00036EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by