CVE-2025-10094

Medium CVSS: 6.5

An issue has been discovered in GitLab CE/EE affecting all versions from 10.7 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed authenticated users to disrupt access to token listings and related administrative operations by creating tokens with excessively large names.

Vendor

Gitlab

Product

Gitlab

CWE

CWE-1284

Yayın Tarihi

2025-09-12 05:15:31

Güncelleme

2025-09-20 02:56:50

Source Identifier

cve@gitlab.com

KEV Date Added

Kategoriler

CWE-1284 Gitlab MEDIUM Gitlab 2025

Referanslar

https://about.gitlab.com/releases/2025/09/10/patch-release-gitlab-18-3-2-released/ https://gitlab.com/gitlab-org/gitlab/-/issues/528469 https://hackerone.com/reports/3049089

Benzer Kayıtlar

High

CVE-2026-2370

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 1…

High

CVE-2026-3857

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.8.7, 18.9 before 18.9.3, and…

High

CVE-2026-3988

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.8.7, 18.9 before 18.9.3, and 1…

Medium

CVE-2026-2973

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.8.7, 18.9 before 18.9.3, and 1…

High

CVE-2026-2995

GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.1…

Medium

CVE-2026-2726

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.8.7, 18.9 before 18.9.3, and…