Metrics
Affected Vendors & Products
Solution
Upgrade to version 17.7.6, 17.8.4 or 17.9.1
Workaround
No workaround given by the vendor.
Wed, 06 Aug 2025 18:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* cpe:2.3:a:gitlab:gitlab:17.9.0:*:*:*:enterprise:*:*:* |
Thu, 06 Mar 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 06 Mar 2025 13:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper authorization in GitLab EE affecting all versions from 17.7 prior to 17.7.6, 17.8 prior to 17.8.4, 17.9 prior to 17.9.1 allow users with limited permissions to access to potentially sensitive project analytics data. | |
Title | Incorrect Authorization in GitLab | |
First Time appeared |
Gitlab
Gitlab gitlab |
|
Weaknesses | CWE-863 | |
CPEs | cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:* | |
Vendors & Products |
Gitlab
Gitlab gitlab |
|
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: GitLab
Published:
Updated: 2025-03-06T16:07:19.120Z
Reserved: 2025-03-06T13:02:55.315Z
Link: CVE-2025-2045

Updated: 2025-03-06T16:07:14.841Z

Status : Analyzed
Published: 2025-03-06T13:15:12.553
Modified: 2025-08-06T18:33:48.627
Link: CVE-2025-2045

No data.

No data.