vulnerability

FreeBSD: VID-8fb9101e-f58a-11ef-b4e4-2cf05da270f3 (CVE-2025-0475): Gitlab -- Vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:M/Au:S/C:C/I:C/A:N)	Feb 28, 2025	Dec 10, 2025	Dec 10, 2025

Severity

CVSS

(AV:N/AC:M/Au:S/C:C/I:C/A:N)

Published

Feb 28, 2025

Added

Dec 10, 2025

Modified

Dec 10, 2025

Description

Gitlab reports: XSS in k8s proxy endpoint XSS Maven Dependency Proxy HTML injection leads to XSS on self hosted instances Improper Authorisation Check Allows Guest User to Read Security Policy Planner role can read code review analytics in private projects

Solutions

freebsd-upgrade-package-gitlab-cefreebsd-upgrade-package-gitlab-ee

References

CVE-2025-0475
https://attackerkb.com/topics/CVE-2025-0475
CWE-79

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today