Gitlab
This hub aggregates every CVE we track for Gitlab, a product in the devtools ci space. Use it to gauge the current risk picture and drill into individual advisories.
1,397
CVEs tracked
59
Critical
288
High
4
In CISA KEV
Severity distribution
MEDIUM876HIGH288LOW174CRITICAL59
Monthly trend
12
15
21
10
12
12
10
19
22
8
14
20
10
15
16
10
14
11
13
25
27
22
31
12
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Gitlab.
- CVE-2026-1500Allocation of Resources Without Limits or Throttling in GitLab6.5
- CVE-2026-3553Incorrect Authorization in GitLab3.1
- CVE-2026-6269Incorrect Authorization in GitLab5.4
- CVE-2026-6277Incorrect Authorization in GitLab4.3
- CVE-2026-6552Authorization Bypass Through User-Controlled Key in GitLab8.7
- CVE-2026-6976Authorization Bypass Through User-Controlled Key in GitLab3.7
- CVE-2026-7250Allocation of Resources Without Limits or Throttling in GitLab7.5
- CVE-2026-8589Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab7.3
- CVE-2026-9204Server-Side Request Forgery (SSRF) in GitLab5.3
- CVE-2026-9694Improper Neutralization of Substitution Characters in GitLab2.6
- CVE-2026-10087Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab8.7
- CVE-2026-10733Improper Restriction of Rendered UI Layers or Frames in GitLab4.3
- CVE-2026-9807Incorrect Authorization in GitLab4.3
- CVE-2026-1402Allocation of Resources Without Limits or Throttling in GitLab6.5
- CVE-2026-2601Missing Authorization in GitLab4.3
Product normalization is registry-driven with AI assist and human review. How it works