VYPR
Unrated severityNVD Advisory· Published Oct 9, 2025· Updated Oct 9, 2025

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-2934

Description

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 5.2 prior to 18.2.8, 18.3 prior to 18.3.4, and 18.4 prior to 18.4.2 that could have allowed an authenticated attacker to create a denial of service condition by configuring malicious webhook endpoints that send crafted HTTP responses.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11

Patches

Vulnerability mechanics

References

3

News mentions

1