PT-2025-17705 · Gitlab · Gitlab Ce/Ee

Published

2025-04-23

Updated

2025-04-26

CVE-2025-0639

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 16.7 through 17.9.7 GitLab CE/EE versions 17.10 through 17.10.5 GitLab CE/EE versions 17.11 through 17.11.1

Description An issue has been discovered affecting service availability via issue preview in GitLab CE/EE. The issue affects service availability, but no information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For GitLab CE/EE versions 16.7 through 17.9.7, update to version 17.9.7 or later. For GitLab CE/EE versions 17.10 through 17.10.5, update to version 17.10.5 or later. For GitLab CE/EE versions 17.11 through 17.11.1, update to version 17.11.1 or later.

Exploit

Fix

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

BDU:2025-05160

BIT-GITLAB-2025-0639

CVE-2025-0639

Affected Products

Gitlab Ce/Ee

PT-2025-17705 · Gitlab · Gitlab Ce/Ee

CVE-2025-0639

Weakness Enumeration

Related Identifiers

Affected Products

References · 16