GitLab CE/EE Custom Service Desk Email Access Vulnerability

Vulnerability

A vulnerability exists in GitLab Community Edition (CE) and Enterprise Edition (EE) in versions 17.9 prior to 18.0.5, 18.1 prior to 18.1.3, and 18.2 prior to 18.2.1. This vulnerability could have allowed an unauthorized user to access custom service desk email addresses.

Impact

Exploitation of this vulnerability could lead to unauthorized access to custom service desk email addresses.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GitLab CE/EE Custom Service Desk Email Access Vulnerability

Vulnerability

Impact

Affected Products

GitLab

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating