Lucene search
+L

1117 matches found

ptsecurity
ptsecurity
added 2026/05/14 12:0 a.m.18 views

PT-2026-40855

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 18.5 through 18.9.6 GitLab CE/EE versions 18.10 through 18.10.5 GitLab CE/EE versions 18.11 through 18.11.2 Description An issue exists where an unauthenticated user can cause a denial of service by sending specially...

7.5CVSS5.8AI score0.00339EPSS
Exploits0References7
cgr
cgr
added 2026/05/08 1:17 p.m.12 views

GHSA-V2FC-QM4H-8HQV vulnerabilities

Vulnerabilities for packages: ruby4.0-rails, pact-broker-docker-fips, ruby3.2-rails, ruby3.3-rails, gitlab-rails-ce-fips, ruby3.4-rails, gitlab-rails-ce, kube-logging-operator, pact-broker-docker...

6.1AI score
Exploits0
nessus
nessus
added 2026/04/29 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2025-3922

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.4 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have...

6.5CVSS5.5AI score0.00402EPSS
Exploits0References2
osv
osv
added 2026/04/24 9:8 a.m.7 views

BIT-GITLAB-2025-6016 Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have allowed an authenticated user to cause denial of service due to insufficient resource allocation limits when retrieving notes under certain...

6.5CVSS5.4AI score0.00402EPSS
Exploits0References4
osv
osv
added 2026/04/24 9:8 a.m.4 views

BIT-GITLAB-2025-3922 Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.4 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have allowed an authenticated user to cause denial of service by overwhelming system resources under certain conditions due to insufficient...

6.5CVSS5.4AI score0.00402EPSS
Exploits0References4
redhatcve
redhatcve
added 2026/04/24 7:22 a.m.10 views

CVE-2026-4922

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.0 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have allowed an unauthenticated user to execute GraphQL mutations on behalf of authenticated users due to insufficient CSRF protection...

8.1CVSS5.5AI score0.00178EPSS
Exploits0References1
nvd
nvd
added 2026/04/22 5:16 p.m.9 views

CVE-2025-0186

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.6 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have allowed an authenticated user to cause denial of service under certain conditions by exhausting server resources by making crafted requests...

6.5CVSS0.00402EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2026/04/22 5:16 p.m.5 views

CVE-2025-6016

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have allowed an authenticated user to cause denial of service due to insufficient resource allocation limits when retrieving notes under certain...

6.5CVSS5.8AI score0.00402EPSS
Exploits0References1
osv
osv
added 2026/04/22 5:16 p.m.7 views

UBUNTU-CVE-2025-0186

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.6 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have allowed an authenticated user to cause denial of service under certain conditions by exhausting server resources by making crafted requests...

6.5CVSS5.8AI score0.00402EPSS
Exploits0References2
osv
osv
added 2026/04/22 5:16 p.m.8 views

UBUNTU-CVE-2025-9957

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that under certain conditions could have allowed an authenticated user with project owner permissions to bypass group fork prevention settings due to...

2.7CVSS5.3AI score0.00381EPSS
Exploits0References2
osv
osv
added 2026/04/22 5:16 p.m.5 views

UBUNTU-CVE-2025-6016

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have allowed an authenticated user to cause denial of service due to insufficient resource allocation limits when retrieving notes under certain...

6.5CVSS5.8AI score0.00402EPSS
Exploits0References2
debiancve
debiancve
added 2026/04/22 4:29 p.m.7 views

CVE-2026-3254

Removed by vendor...

3.5CVSS5.8AI score0.00152EPSS
Exploits0
debiancve
debiancve
added 2026/04/22 4:5 p.m.6 views

CVE-2025-0186

Removed by vendor...

6.5CVSS5.8AI score0.00402EPSS
Exploits0
debiancve
debiancve
added 2026/04/22 4:5 p.m.5 views

CVE-2025-6016

Removed by vendor...

6.5CVSS5.8AI score0.00402EPSS
Exploits0
cvelist
cvelist
added 2026/04/22 4:5 p.m.33 views

CVE-2025-6016 Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have allowed an authenticated user to cause denial of service due to insufficient resource allocation limits when retrieving notes under certain...

6.5CVSS0.00402EPSS
Exploits0References3
debiancve
debiancve
added 2026/04/22 4:5 p.m.7 views

CVE-2025-9957

Removed by vendor...

2.7CVSS5.8AI score0.00381EPSS
Exploits0
cvelist
cvelist
added 2026/04/22 4:5 p.m.31 views

CVE-2025-9957 Incorrect Authorization in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that under certain conditions could have allowed an authenticated user with project owner permissions to bypass group fork prevention settings due to...

2.7CVSS0.00381EPSS
Exploits0References3
debiancve
debiancve
added 2026/04/22 4:4 p.m.9 views

CVE-2026-1660

Removed by vendor...

6.5CVSS5.8AI score0.00402EPSS
Exploits0
vulnrichment
vulnrichment
added 2026/04/22 4:4 p.m.6 views

CVE-2026-5262 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.1.0 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that under certain conditions could have allowed an unauthenticated user to access tokens in the Storybook development environment due to improper input...

8CVSS5.8AI score0.00223EPSS
Exploits0References3
debiancve
debiancve
added 2026/04/22 4:4 p.m.5 views

CVE-2026-5377

Removed by vendor...

4.3CVSS5.8AI score0.00258EPSS
Exploits0
Rows per page
Query Builder