Логотип exploitDog
bind:CVE-2025-5846
Консоль
Логотип exploitDog

exploitDog

bind:CVE-2025-5846

Количество 5

Количество 5

ubuntu логотип

CVE-2025-5846

около 1 месяца назад

An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to assign unrelated compliance frameworks to projects by sending crafted GraphQL mutations that bypassed framework-specific permission checks.

CVSS3: 2.7
EPSS: Низкий
nvd логотип

CVE-2025-5846

около 1 месяца назад

An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to assign unrelated compliance frameworks to projects by sending crafted GraphQL mutations that bypassed framework-specific permission checks.

CVSS3: 2.7
EPSS: Низкий
debian логотип

CVE-2025-5846

около 1 месяца назад

An issue has been discovered in GitLab EE affecting all versions from ...

CVSS3: 2.7
EPSS: Низкий
github логотип

GHSA-4wp9-h8xr-gvf2

около 1 месяца назад

An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to assign unrelated compliance frameworks to projects by sending crafted GraphQL mutations that bypassed framework-specific permission checks.

CVSS3: 2.7
EPSS: Низкий
fstec логотип

BDU:2025-07921

около 1 месяца назад

Уязвимость интерфейса GraphQL API программной платформы на базе git для совместной работы над кодом GitLab, позволяющая нарушителю обойти ограничения безопасности и повысить свои привилегии

CVSS3: 2.7
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
ubuntu логотип
CVE-2025-5846

An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to assign unrelated compliance frameworks to projects by sending crafted GraphQL mutations that bypassed framework-specific permission checks.

CVSS3: 2.7
0%
Низкий
около 1 месяца назад
nvd логотип
CVE-2025-5846

An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to assign unrelated compliance frameworks to projects by sending crafted GraphQL mutations that bypassed framework-specific permission checks.

CVSS3: 2.7
0%
Низкий
около 1 месяца назад
debian логотип
CVE-2025-5846

An issue has been discovered in GitLab EE affecting all versions from ...

CVSS3: 2.7
0%
Низкий
около 1 месяца назад
github логотип
GHSA-4wp9-h8xr-gvf2

An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to assign unrelated compliance frameworks to projects by sending crafted GraphQL mutations that bypassed framework-specific permission checks.

CVSS3: 2.7
0%
Низкий
около 1 месяца назад
fstec логотип
BDU:2025-07921

Уязвимость интерфейса GraphQL API программной платформы на базе git для совместной работы над кодом GitLab, позволяющая нарушителю обойти ограничения безопасности и повысить свои привилегии

CVSS3: 2.7
0%
Низкий
около 1 месяца назад

Уязвимостей на страницу