Vinax

**Name of the Vulnerable Software and Affected Versions** GitLab CE/EE versions prior to 18.9.1 **Description** A flaw exists in GitLab CE/EE that, under specific conditions, could allow an unauthenticated user to disrupt service by sending crafted requests to a CI jobs API endpoint. The issue involves specially crafted requests targeting the `/api/v1/ci/jobs` API endpoint. The vulnerability does not require authentication to exploit. **Recommendations** Update to GitLab CE/EE version 18.9.1 or later.