vulnerability
FreeBSD: VID-477fdc04-9aa2-11f0-961b-2cf05da270f3 (CVE-2025-10867): Gitlab -- Vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:N/AC:M/Au:S/C:N/I:N/A:P) | Sep 26, 2025 | Dec 10, 2025 | Dec 10, 2025 |
Severity
3
CVSS
(AV:N/AC:M/Au:S/C:N/I:N/A:P)
Published
Sep 26, 2025
Added
Dec 10, 2025
Modified
Dec 10, 2025
Description
Gitlab reports: Denial of Service issue when uploading specifically crafted JSON files impacts GitLab CE/EE Denial of Service issue bypassing query complexity limits impacts GitLab CE/EE Information disclosure issue in virtual registery configuration for low privileged users impacts GitLab CE/EE Privilege Escalation issue from within the Developer role impacts GitLab EE Denial of Service issue in GraphQL API via Unbounded Array Parameters impacts GitLab CE/EE Improper Authorization issue for Project Maintainers when assigning roles impacts GitLab EE Denial of Service issue in GraphQL API blobSearch impacts GitLab CE/EE Incorrect ownership assignment via Move Issue drop-down impacts GitLab CE/EE Denial of Service issue via string conversion methods impacts GitLab CE/EE
Solutions
freebsd-upgrade-package-gitlab-cefreebsd-upgrade-package-gitlab-ee
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.