Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24603

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00264EPSS
Exploits0References1
OSV
OSV
added 2025/08/18 8:34 a.m.5 views

BIT-GITLAB-2025-8770 Authorization Bypass Through User-Controlled Key in GitLab

An issue has been discovered in GitLab EE affecting all versions from 18.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that could have allowed authenticated users with specific access to bypass merge request approval policies by manipulating approval rule identifiers...

6.5CVSS6.6AI score0.00264EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.6 views

GitLab 18.0 < 18.0.6 / 18.1 < 18.1.4 / 18.2 < 18.2.2 (CVE-2025-8770)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions from 18.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that could have allowed authenticated users with specific...

6.5CVSS5.6AI score0.00264EPSS
Exploits0References3
NVD
NVD
added 2025/08/13 6:15 p.m.6 views

CVE-2025-8770

An issue has been discovered in GitLab EE affecting all versions from 18.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that could have allowed authenticated users with specific access to bypass merge request approval policies by manipulating approval rule identifiers...

6.5CVSS0.00264EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/13 5:26 p.m.3 views

CVE-2025-8770 Authorization Bypass Through User-Controlled Key in GitLab

An issue has been discovered in GitLab EE affecting all versions from 18.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that could have allowed authenticated users with specific access to bypass merge request approval policies by manipulating approval rule identifiers...

6.5CVSS6.6AI score0.00264EPSS
Exploits0References1
CVE
CVE
added 2025/08/13 5:26 p.m.25 views

CVE-2025-8770

CVE-2025-8770 describes a vulnerability in GitLab EE where authenticated users with specific access could bypass merge request approval policies by manipulating approval rule identifiers. Affected versions are GitLab EE 18.0 up to before 18.0.6, 18.1 up to before 18.1.4, and 18.2 up to before 18....

6.5CVSS6.6AI score0.00264EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/08/13 5:26 p.m.8 views

CVE-2025-8770 Authorization Bypass Through User-Controlled Key in GitLab

An issue has been discovered in GitLab EE affecting all versions from 18.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that could have allowed authenticated users with specific access to bypass merge request approval policies by manipulating approval rule identifiers...

6.5CVSS0.00264EPSS
Exploits0References1
OSV
OSV
added 2025/08/13 5:26 p.m.5 views

CVE-2025-8770 Authorization Bypass Through User-Controlled Key in GitLab

An issue has been discovered in GitLab EE affecting all versions from 18.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that could have allowed authenticated users with specific access to bypass merge request approval policies by manipulating approval rule identifiers...

6.5CVSS6.3AI score0.00264EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/08/13 5:26 p.m.4 views

CVE-2025-8770

Removed by vendor...

6.5CVSS5.8AI score0.00264EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/08/13 12:0 a.m.4 views

PT-2025-33058 · Gitlab · Gitlab Ce/Ee

Name of the Vulnerable Software and Affected Versions: GitLab EE versions prior to 18.0.6 GitLab EE versions prior to 18.1.4 GitLab EE versions prior to 18.2.2 Description: An issue exists in GitLab EE that allows authenticated users with specific access to bypass merge request approval policies ...

6.5CVSS5.8AI score0.00264EPSS
Exploits0References8
Rows per page
Query Builder