CVE-2025-1908 in Community EditionИнформация

Сводка

по MITRE • 24.04.2025

An issue has been discovered in GitLab EE/CE that could allow an attacker to track users' browsing activities, potentially leading to full account take-over, affecting all versions from 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Ответственный

GitLab

Резервировать

03.03.2025

Раскрытие

24.04.2025

Модерация

принято

Вход

VDB-306060

EPSS

0.00050

KEV

Нет

Деятельности

Очень низкий

Сектор

Telecommunication, Pharma, ...

Источники

MITREhttps://www.cve.org/CVERecord?id=CVE-2025-1908
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2025-1908
CVE Detailshttps://www.cvedetails.com/cve/CVE-2025-1908/

ПредыдущийОбзорДалее

Want to know what is going to be exploited?

We predict KEV entries!