CVE-2025-13928 | GitLab Community Edition/Enterprise Edition up to 18.6.3/18.7.1/18.8.1 API Endpoint authorization

Inserito da Angelo Barbosa | Gen 22, 2026 | CVE

A vulnerability categorized as problematic has been discovered in GitLab Community Edition and Enterprise Edition up to 18.6.3/18.7.1/18.8.1. This affects an unknown part of the component API Endpoint. Executing a manipulation can lead to incorrect authorization.

This vulnerability is tracked as CVE-2025-13928. The attack can be launched remotely. No exploit exists.

It is advisable to upgrade the affected component.

CVE-2025-13928 | GitLab Community Edition/Enterprise Edition up to 18.6.3/18.7.1/18.8.1 API Endpoint authorization

Post correlati

CVE-2024-47257 | AXIS Q6128-E PTZ Network Camera/P1428-E Network Camera 6.50 Ethernet Frame improper validation of specified quantity in input

CVE-2025-53620 | qwik up to 1.12.x @builder.io/qwik-city uncaught exception (GHSA-qr9h-j6xg-2j72)

CVE-2024-32905 | Google Android kernel link_device_memory_legacy.c circ_read out-of-bounds write

CVE-2023-6266 | Backup Migration Plugin up to 1.3.6 on WordPress information disclosure