CVE-2026-3848 | GitLab Community Edition/Enterprise Edition up to 18.7.5/18.8.5/18.9.1 Import crlf injection

Inserito da Angelo Barbosa | Mar 11, 2026 | CVE

A vulnerability labeled as problematic has been found in GitLab Community Edition and Enterprise Edition up to 18.7.5/18.8.5/18.9.1. This vulnerability affects unknown code of the component Import. The manipulation results in crlf injection.

This vulnerability is known as CVE-2026-3848. It is possible to launch the attack remotely. No exploit is available.

The affected component should be upgraded.

CVE-2026-3848 | GitLab Community Edition/Enterprise Edition up to 18.7.5/18.8.5/18.9.1 Import crlf injection

Post correlati

CVE-2024-38568 | Linux Kernel up to 6.1.92/6.6.32/6.8.11/6.9.2 drivers event_group array index

CVE-2024-43457 | Microsoft

CVE-2024-4973 | code-projects Simple Chat System 1.0 /register.php name/number/address sql injection

CVE-2025-10092 | Jinher OA up to 1.2 XML ?Type=add xml external entity reference