Unrated severityNVD Advisory· Published Jul 28, 2025· Updated Jul 28, 2025
Missing Authentication for Critical Function in GitLab Language Server
CVE-2025-8279
Description
Insufficient input validation within GitLab Language Server 7.6.0 and later before 7.30.0 allows arbitrary GraphQL query execution
Affected products
2- GitLab/GitLab Language Serverv5cpe:2.3:a:gitlab:gitlab-language-server:*:*:*:*:*:*:*:*Range: 7.6.0
- Range: >=7.6.0, <7.30.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- gitlab.com/gitlab-org/gitlab/-/issues/538205mitreissue-trackingpermissions-required
News mentions
0No linked articles in our index yet.