VYPR
Unrated severityNVD Advisory· Published Sep 26, 2025· Updated Sep 26, 2025

Business Logic Errors in GitLab

CVE-2025-10868

Description

An issue has been discovered in GitLab CE/EE affecting all versions from 17.4 before 18.2.7, 18.3 before 18.3.3, and 18.4 before 18.4.1 where certain string conversion methods exhibit performance degradation with large inputs.

Affected products

11

Patches

Vulnerability mechanics

References

1

News mentions

1