Unrated severityOSV Advisory· Published Feb 2, 2026· Updated Feb 2, 2026
Missing Authorization in GitLab
CVE-2026-1751
Description
A vulnerability has been discovered in GitLab CE/EE affecting all versions starting with 16.8 before 18.5.0 that could have allowed unauthorized edits to merge request approval rules under certain conditions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: >=16.8, <18.5.0
Patches
Vulnerability mechanics
References
2- hackerone.com/reports/2980839mitretechnical-descriptionexploitpermissions-required
- gitlab.com/gitlab-org/gitlab/-/issues/519340mitreissue-trackingpermissions-required
News mentions
0No linked articles in our index yet.