CVE-2025-7001

Medium CVSS: 4.3

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1 that could have allowed priviledged users to access certain resource_group information through the API which should have been unavailable.

Vendor

Gitlab

Product

Gitlab

CWE

CWE-1220

Yayın Tarihi

2025-07-24 07:15:54

Güncelleme

2025-07-28 14:36:43

Source Identifier

cve@gitlab.com

KEV Date Added

Kategoriler

CWE-1220 Gitlab MEDIUM Gitlab 2025

Referanslar

https://gitlab.com/gitlab-org/gitlab/-/issues/553163 https://hackerone.com/reports/3223993

Benzer Kayıtlar

High

CVE-2026-2370

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 1…

High

CVE-2026-3857

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.8.7, 18.9 before 18.9.3, and…

High

CVE-2026-3988

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.8.7, 18.9 before 18.9.3, and 1…

Medium

CVE-2026-2973

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.8.7, 18.9 before 18.9.3, and 1…

High

CVE-2026-2995

GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.1…

Medium

CVE-2026-2726

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.8.7, 18.9 before 18.9.3, and…