CVE-2025-12653 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.3 before 18.4.5, 18.5 before 18.5.3, and 18.6 before 18.6.1 that under specific co…
Medium CVSS: 6.5

CVE-2025-12653

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.3 before 18.4.5, 18.5 before 18.5.3, and 18.6 before 18.6.1 that under specific conditions could have allowed an unauthenticated user to join arbitrary organizations by changing headers on some requests.
Vendor
Gitlab
Product
Gitlab
CWE
CWE-290
Yayın Tarihi
2025-11-26 20:15:49
Güncelleme
2025-12-10 23:15:47
Source Identifier
cve@gitlab.com
KEV Date Added
-

Kategoriler

CWE-290 Gitlab MEDIUM Gitlab 2025

Referanslar

https://about.gitlab.com/releases/2025/11/26/patch-release-gitlab-18-6-1-released/ https://gitlab.com/gitlab-org/gitlab/-/issues/579372 https://hackerone.com/reports/3370245