Back to CVE List

CVE-2026-11827

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
4.9 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Vulnerability Description

GitLab has remediated an issue in GitLab EE affecting all versions from 9.5 before 18.11.7, 19.0 before 19.0.4, and 19.1 before 19.1.2 that under certain conditions could have allowed an authenticated user with maintainer-role permissions to obtain another user's stored credentials due to improper authorization controls.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-522
Source
NVD
Vendor
GitLab
Product
GitLab

External References

Discussion (0)

Add Comment

No comments yet. Be the first!