VYPR
Unrated severityNVD Advisory· Published Dec 11, 2025· Updated Dec 11, 2025

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-12562

Description

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.4.6, 18.5 before 18.5.4, and 18.6 before 18.6.2 that could have allowed an unauthenticated user to create a denial of service condition by sending crafted GraphQL queries that bypass query complexity limits.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

26

Patches

Vulnerability mechanics

References

3

News mentions

1