CVE-2025-0314
24.01.2025, 03:15
An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.6.4, 17.7 before 17.7.3, and 17.8 before 17.8.1. Improper rendering of certain file types lead to cross-site scripting.
| Vendor | Product | Version |
|---|---|---|
| gitlab | gitlab | 17.2.0 ≤ 𝑥 < 17.6.4 |
| gitlab | gitlab | 17.2.0 ≤ 𝑥 < 17.6.4 |
| gitlab | gitlab | 17.7.0 ≤ 𝑥 < 17.7.3 |
| gitlab | gitlab | 17.7.0 ≤ 𝑥 < 17.7.3 |
| gitlab | gitlab | 17.8.0 |
| gitlab | gitlab | 17.8.0 |
𝑥
= Vulnerable software versions
