Lucene search
K

5 matches found

NVD
NVD
added 2025/06/26 6:15 a.m.8 views

CVE-2025-5846

An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to assign unrelated compliance frameworks to projects by sending crafted GraphQL mutations that bypassed...

4.3CVSS0.00211EPSS
Exploits0References1
Circl
Circl
added 2025/06/26 5:49 a.m.8 views

CVE-2025-5846

creationtimestamp| type| source ---|---|--- 2025-06-26 05:49:32+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19576 2025-06-26 10:50:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsixexaxej2v...

4.3CVSS4.8AI score0.00211EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/06/26 5:31 a.m.9 views

CVE-2025-5846

Removed by vendor...

4.3CVSS5.8AI score0.00211EPSS
Exploits0
CVE
CVE
added 2025/06/26 5:31 a.m.33 views

CVE-2025-5846

CVE-2025-5846 (GitLab EE) affects GitLab Enterprise Edition prior to 17.11.5, 18.0 prior to 18.0.3, and 18.1 prior to 18.1.1. The issue allows authenticated users to assign unrelated compliance frameworks to projects by sending crafted GraphQL mutations that bypass framework-specific permission c...

4.3CVSS6.4AI score0.00211EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/26 12:0 a.m.10 views

GitLab 16.10 < 17.11.5 / 18.0 < 18.0.3 / 18.1 < 18.1.1 (CVE-2025-5846)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to assign unrelated...

4.3CVSS5.5AI score0.00211EPSS
Exploits0References3
Rows per page
Query Builder