PT-2025-48259 · Gitlab · Gitlab
Published
2025-11-27
·
Updated
2025-12-10
·
CVE-2024-9183
CVSS v3.1
7.7
High
| Vector | AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
GitLab CE/EE versions prior to 18.4.5
GitLab CE/EE versions prior to 18.5.3
GitLab CE/EE versions prior to 18.6.1
Description
GitLab CE/EE is affected by an issue that could allow an authenticated user to obtain credentials from higher-privileged users and perform actions in their context under specific conditions.
Recommendations
Update GitLab CE/EE to version 18.4.5 or later.
Update GitLab CE/EE to version 18.5.3 or later.
Update GitLab CE/EE to version 18.6.1 or later.
Exploit
Fix
DoS
Time Of Check To Time Of Use
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Gitlab