CVE-2026-2370 in GitLab Community Editioninformation

Résumé (Anglaise)

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 affecting Jira Connect installations that could have allowed an authenticated user with minimal workspace permissions to obtain installation credentials and impersonate the GitLab app due to improper authorization checks.

Responsable

GitLab

Réserver

11/02/2026

Divulgation

30/03/2026

Entrées

Publié	Base	Temp	Vulnérabilité	CWE	Prod	Exp	Con	EPSS	CTI	CVE
30/03/2026	7.2	7.0	GitLab Community Edition/Enterprise Edition élévation de privilèges	233	Bug Tracking Software	Non défini	Correctif officiel	0.00000	0.00+	CVE-2026-2370

Montrer plus

Description
Changements
Renseignements sur les menaces
API/JSON

◂ PrécédentAperçuSuivant ▸

Interested in the pricing of exploits?

See the underground prices here!