Low severity2.7NVD Advisory· Published Jul 8, 2026
gitlab: GitLab EE: Auditor-level users can modify compliance records via improper authorization in GraphQL
CVE-2026-6352
Description
gitlab: GitLab EE: Auditor-level users can modify compliance records via improper authorization in GraphQL
Affected products
2Patches
Vulnerability mechanics
News mentions
1- GitLab Patch Release: 19.1.2, 19.0.4, 18.11.7GitLab Security Releases · Jul 8, 2026