GitLab
0 remedies
cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*, +2 more
0 remedies
- >= 2.1.0, < 17.10.8
- >= 17.11, < 17.11.4
- >= 18.0, < 18.0.2
GitLab CE/EE Denial-of-Service Vulnerability Due to Improper Input Validation in HTTP Responses
Vulnerability
A denial-of-service vulnerability has been identified in GitLab Community Edition (CE) and Enterprise Edition (EE) versions 2.1.0 prior to 17.10.8, 17.11 prior to 17.11.4, and 18.0 prior to 18.0.2. The issue arises from a lack of input validation in HTTP responses, which could allow an authenticated user to disrupt service.
Impact
Exploitation of this vulnerability can lead to a denial-of-service condition, causing interruptions in service availability.
Added: Jun 12, 2025, 10:18 AM
Updated: Jun 12, 2025, 10:18 AM
Vulnerability Rating
Custom Algorithm
spread
7.3impact
2.5exploitability
5.2remediation
0.0relevance
0.2threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.