VYPR
Unrated severityNVD Advisory· Published Sep 26, 2025· Updated Sep 26, 2025

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-11042

Description

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.2 before 18.2.7, 18.3 before 18.3.3, and 18.4 before 18.4.1, that allows an attacker to cause uncontrolled CPU consumption, potentially leading to a Denial of Service (DoS) condition while using specific GraphQL queries.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11

Patches

Vulnerability mechanics

References

1

News mentions

1