Gitlab

1,309 tracked vulnerabilities.

CVE-2025-2498 LOW
Gitlab EE <18.0.6-18.2.2 - Auth Bypass
Aug 13, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-1477 MEDIUM
Gitlab < 18.0.6 - Resource Allocation Without Limits
Aug 13, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-12303 MEDIUM
Gitlab < 18.0.6 - Incorrect Privilege Assignment
Aug 13, 2025
CVSS 6.7
EPSS 0.00
CVE-2024-10219 MEDIUM
GitLab CE/EE <18.0.6-18.2.2 - Auth Bypass
Aug 13, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-8279 HIGH
Gitlab Language Server < 7.30.0 - Missing Authentication
Jul 28, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-7001 MEDIUM
GitLab CE/EE <18.0.5-18.2.1 - Privilege Escalation
Jul 24, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-4976 MEDIUM
GitLab EE <18.0.5-18.2.1 - Info Disclosure
Jul 24, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-1299 MEDIUM
Gitlab < 18.0.5 - Missing Authorization
Jul 24, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-0765 MEDIUM
GitLab CE/EE <18.0.5-18.2.1 - Info Disclosure
Jul 24, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-4700 HIGH
Gitlab < 18.0.5 - XSS
Jul 23, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-4439 HIGH
Gitlab < 18.0.5 - XSS
Jul 23, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-6948 HIGH
Gitlab < 17.11.6 - XSS
Jul 10, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-6168 LOW
Gitlab < 18.0.4 - Incorrect Authorization
Jul 10, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-4972 LOW
Gitlab < 18.0.4 - Incorrect Authorization
Jul 10, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-3396 MEDIUM
GitLab EE <17.11.6, <18.0.4, <18.1.2 - Auth Bypass
Jul 10, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-5846 LOW
GitLab EE <17.11.5-18.1.1 - Privilege Escalation
Jun 26, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-5315 MEDIUM
Gitlab < 17.11.5 - Missing Authorization
Jun 26, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-3279 MEDIUM
GitLab CE/EE <17.11.5-18.1.1 - DoS
Jun 26, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-2938 LOW
GitLab CE/EE <17.11.5, <18.0.3, <18.1.1 - Privilege Escalation
Jun 26, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-1754 MEDIUM
GitLab CE/EE <17.11.5, <18.0.3, <18.1.1 - Unauthenticated File Upload
Jun 26, 2025
CVSS 5.3
EPSS 0.00
CVE-2023-5600 LOW
Gitlab < 16.3.6 - Missing Authorization
Jun 20, 2025
CVSS 3.1
EPSS 0.00
CVE-2024-4994 HIGH
GitLab CE/EE <16.11.5 & <17.0.3 & <17.1.1 - CSRF
Jun 20, 2025
CVSS 8.1
EPSS 0.00
CVE-2024-4025 MEDIUM
GitLab CE/EE <16.11.5-17.1.1 - DoS
Jun 20, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-5121 HIGH
Gitlab < 17.11.4 - Missing Authorization
Jun 20, 2025
CVSS 8.5
EPSS 0.00
CVE-2025-2443 HIGH
GitLab EE <17.9.7-17.11.1 - XSS
Jun 20, 2025
CVSS 8.7
EPSS 0.00
Products
gitlab 1,295 gitlab-shell 5 dynamic_application_security_testing_analyzer 4 runner 3 gitlab-vscode-extension 2 gitlab_runner 1 gitaly 1 language_server 1 omnibus 1 dast_api_scanner 1
Quick Filters
Critical CVEs With Exploits In CISA KEV