CVE-2025-0605

Medium CVSS: 4.6

An issue has been discovered in GitLab CE/EE affecting all versions from 16.8 before 17.10.7, 17.11 before 17.11.3, and 18.0 before 18.0.1. Group access controls could allow certain users to bypass two-factor authentication requirements.

Vendor

Gitlab

Product

Gitlab

CWE

CWE-1390

Yayın Tarihi

2025-05-22 15:16:03

Güncelleme

2025-05-29 15:58:07

Source Identifier

cve@gitlab.com

KEV Date Added

Kategoriler

CWE-1390 Gitlab MEDIUM Gitlab 2025

Referanslar

https://gitlab.com/gitlab-org/gitlab/-/issues/514204 https://hackerone.com/reports/2919391

Benzer Kayıtlar

High

CVE-2026-2370

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 1…

High

CVE-2026-3857

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.8.7, 18.9 before 18.9.3, and…

High

CVE-2026-3988

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.8.7, 18.9 before 18.9.3, and 1…

Medium

CVE-2026-2973

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.8.7, 18.9 before 18.9.3, and 1…

High

CVE-2026-2995

GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.1…

Medium

CVE-2026-2726

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.8.7, 18.9 before 18.9.3, and…