CVE-2025-13929

High CVSS: 7.5

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.0 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an unauthenticated user to cause a denial of service by issuing specially crafted requests to repository archive endpoints under certain conditions.

Vendor

Gitlab

Product

Gitlab

CWE

CWE-770

Yayın Tarihi

2026-03-11 16:16:19

Güncelleme

2026-03-13 12:33:51

Source Identifier

cve@gitlab.com

KEV Date Added

Kategoriler

CWE-770 Gitlab HIGH Gitlab 2026

Referanslar

https://about.gitlab.com/releases/2026/03/11/patch-release-gitlab-18-9-2-released/ https://gitlab.com/gitlab-org/gitlab/-/issues/582738 https://gitlab.com/gitlab-org/gitlab/-/work_items/582738 https://hackerone.com/reports/3441004

Benzer Kayıtlar

High

CVE-2026-2370

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 1…

High

CVE-2026-3857

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.8.7, 18.9 before 18.9.3, and…

High

CVE-2026-3988

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.8.7, 18.9 before 18.9.3, and 1…

Medium

CVE-2026-2973

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.8.7, 18.9 before 18.9.3, and 1…

High

CVE-2026-2995

GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.1…

Medium

CVE-2026-2726

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.8.7, 18.9 before 18.9.3, and…