CVE-2025-2937 Information

Description

An issue has been discovered in GitLab CE/EE affecting all versions from 13.2 before 18.0.6 18.1 before 18.1.4 and 18.2 before 18.2.2 that could have allowed authenticated users to create a denial of service condition by sending specially crafted markdown payloads to the Wiki feature.

Reference

https://gitlab.com/gitlab-org/gitlab/-/issues/528995 https://hackerone.com/reports/3058879

Related CNNVD

CNNVD-202508-1416 (Published: 2025-08-13)