CVE-2025-5195 Information

Description

An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 17.10.7 17.11 before 17.11.3 and 18.0 before 18.0.1. It was possible for authenticated users to access arbitrary compliance frameworks leading to unauthorized data disclosure.

Reference

https://gitlab.com/gitlab-org/gitlab/-/issues/534960

Related CNNVD

CNNVD-202506-1661 (Published: 2025-06-12)