PT-2025-25336 · Gitlab · Gitlab Ce/Ee

Published

2025-06-12

Updated

2025-08-12

CVE-2025-5982

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions GitLab EE versions 12.0 through 17.10.7 GitLab EE versions 17.11 through 17.11.3 GitLab EE versions 18.0 through 18.0.1

Description An issue has been discovered in GitLab EE, allowing users to bypass IP access restrictions and view sensitive information under certain conditions.

Recommendations For GitLab EE versions 12.0 through 17.10.7, update to version 17.10.8 or later. For GitLab EE versions 17.11 through 17.11.3, update to version 17.11.4 or later. For GitLab EE versions 18.0 through 18.0.1, update to version 18.0.2 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1220

Related Identifiers

BDU:2025-07638

BIT-GITLAB-2025-5982

CVE-2025-5982

Affected Products

Gitlab Ce/Ee

PT-2025-25336 · Gitlab · Gitlab Ce/Ee

CVE-2025-5982

Weakness Enumeration

Related Identifiers

Affected Products

References · 11