CVE-2025-1908 in Community Edition정보

요약

\~에 의해 MITRE • 2025. 04. 24.

An issue has been discovered in GitLab EE/CE that could allow an attacker to track users' browsing activities, potentially leading to full account take-over, affecting all versions from 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

GitLab

예약하다

2025. 03. 03.

공개

2025. 04. 24.

모더레이션

수락

항목

VDB-306060

CPE

준비됨

CWE

CWE-840 (확인됨)

CVSS

7.7 (CNA)

EPSS

0.00050

KEV

아니요

활동

매우 낮음

부문

Pharma, Chemical, ...

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-1908
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-1908
CVE Details	https://www.cvedetails.com/cve/CVE-2025-1908/

◂ 이전 개요 다음 ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!