CVE-2025-1110 | GitLab Community Edition/Enterprise Edition up to 18.0.0 GraphQL Query insufficient granularity of access control (Issue 517693)

Inserito da Angelo Barbosa | Mag 22, 2025 | CVE

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 18.0.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component GraphQL Query Handler. The manipulation leads to insufficient granularity of access control.

This vulnerability is known as CVE-2025-1110. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-1110 | GitLab Community Edition/Enterprise Edition up to 18.0.0 GraphQL Query insufficient granularity of access control (Issue 517693)

Post correlati

CVE-2024-5080 | WP-FeedStats wp-eMember Plugin up to 10.6.5 on WordPress unrestricted upload

CVE-2024-13547 | aThemes Addons for Elementor Plugin up to 1.0.12 on WordPress Image Accordion Widget cross site scripting

CVE-2023-50932 | Savignano SNotify up to 4.0.1 on Confluence Setting cross-site request forgery

CVE-2024-44296 | Apple visionOS protection mechanism