CVE-2026-4332 in Enterprise EditionИнформация

Сводка

по MITRE • 09.04.2026

GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that, in customizable analytics dashboards, could have allowed an authenticated user to execute arbitrary JavaScript in the context of other users' browsers due to improper input sanitization.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Ответственный

GitLab

Резервировать

17.03.2026

Раскрытие

09.04.2026

Модерация

принято

Вход

VDB-356478

EPSS

0.00279

KEV

Нет

Деятельности

Очень низкий

Источники

Want to know what is going to be exploited?

We predict KEV entries!