CVE-2026-1868 | GitLab AI Gateway up to 18.6.1/18.7.0/18.8.0 Duo Workflow Service special elements used in a template engine

Inserito da Angelo Barbosa | Feb 9, 2026 | CVE

A vulnerability has been found in GitLab AI Gateway up to 18.6.1/18.7.0/18.8.0 and classified as critical. This vulnerability affects unknown code of the component Duo Workflow Service. The manipulation leads to improper neutralization of special elements used in a template engine.

This vulnerability is listed as CVE-2026-1868. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2026-1868 | GitLab AI Gateway up to 18.6.1/18.7.0/18.8.0 Duo Workflow Service special elements used in a template engine

Post correlati

CVE-2026-1699 | Eclipse Theia preview.yml pull_request_target inclusion of functionality from untrusted control sphere (Issue 332)

CVE-2024-8343 | SourceCodester Sentiment Based Movie Rating System 1.0 User Registration Users.php email sql injection

CVE-2025-36580 | Dell Wyse Management Suite up to 5.1 cross site scripting (dsa-2025-226)

CVE-2024-12693 | Google Chrome up to 131.0.6778.139 V8 out-of-bounds (ID 382190)