Volerion logoVolerion
Volerion logoVolerion

GitLab CE/EE Denial-of-Service Vulnerability in JSON File Uploads

Vulnerability

A denial-of-service vulnerability has been identified in GitLab Community Edition (CE) and Enterprise Edition (EE) versions prior to 18.2.7, 18.3 prior to 18.3.3, and 18.4 prior to 18.4.1. This vulnerability allows unauthenticated users to disrupt service by uploading large JSON files that are specifically crafted to cause a DoS condition.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing disruptions in service availability.

Added: Sep 26, 2025, 10:19 AM
Updated: Sep 26, 2025, 3:47 PM

Vulnerability Rating

Custom Algorithm
spread
7.3
impact
2.5
exploitability
7.4
remediation
7.7
relevance
0.6
threat
0.0
urgency
2.9
incentive
5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.