Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-10004

Опубликовано: 09 окт. 2025
Источник: nvd
CVSS3: 7.5
EPSS Низкий

Описание

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.12 to 18.2.8, 18.3 to 18.3.4, and 18.4 to 18.4.2 that could make the GitLab instance unresponsive or severely degraded by sending crafted GraphQL queries requesting large repository blobs.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 13.12.0 (включая) до 18.2.8 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 13.12.0 (включая) до 18.2.8 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 18.3.0 (включая) до 18.3.4 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 18.3.0 (включая) до 18.3.4 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 18.4.0 (включая) до 18.4.2 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 18.4.0 (включая) до 18.4.2 (исключая)

EPSS

Процентиль: 15%
0.00049
Низкий

7.5 High

CVSS3

Дефекты

CWE-770

Связанные уязвимости

ubuntu логотип

CVE-2025-10004

CVSS3: 7.5
ubuntu
25 дней назад

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.12 to 18.2.8, 18.3 to 18.3.4, and 18.4 to 18.4.2 that could make the GitLab instance unresponsive or severely degraded by sending crafted GraphQL queries requesting large repository blobs.

debian логотип

CVE-2025-10004

CVSS3: 7.5
debian
25 дней назад

GitLab has remediated an issue in GitLab CE/EE affecting all versions ...

github логотип

GHSA-5p65-6rwr-377w

CVSS3: 7.5
github
25 дней назад

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.12 to 18.2.8, 18.3 to 18.3.4, and 18.4 to 18.4.2 that could make the GitLab instance unresponsive or severely degraded by sending crafted GraphQL queries requesting large repository blobs.

EPSS

Процентиль: 15%
0.00049
Низкий

7.5 High

CVSS3

Дефекты

CWE-770