VYPR
Unrated severityNVD Advisory· Published Mar 6, 2025· Updated Mar 6, 2025

Incorrect Authorization in GitLab

CVE-2025-2045

Description

Improper authorization in GitLab EE affecting all versions from 17.7 prior to 17.7.6, 17.8 prior to 17.8.4, 17.9 prior to 17.9.1 allow users with limited permissions to access to potentially sensitive project analytics data.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • GitLab Inc./GitLabv52 versions
    cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*range: 17.7.0
    • (no CPE)range: >=17.7.0 <17.7.6, >=17.8.0 <17.8.4, >=17.9.0 <17.9.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.