CNNVD-202508-1431 Information

CNNVD ID

CNNVD-202508-1431

Related CVE

CVE-2025-8770

• CNNVD Published: 2025-08-13

Description (Chinese)

GitLab Enterprise Edition（EE）是美国GitLab公司的一套内容管理系统。 GitLab Enterprise Edition 18.0.6之前版本、18.1.4之前版本和18.2.2之前版本存在安全漏洞，该漏洞源于特定权限用户可能绕过合并请求批准策略。

Description (English)

GitLab Enterprise Edition (EE) is a content management system for GitLab in the United States. There is a security loophole in the previous versions of GitLab Enterprise Application 18.0.6, 18.1.4 and 18.2.2, which stems from the fact that a given permission user may circumvent the merger request approval strategy.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

GitLab

Published

2025-08-13

Last Modified

2026-02-24

References

https://gitlab.com/gitlab-org/gitlab/-/issues/549105

Patch

https://about.gitlab.com/