CVE-2025-5101

EUVD-2025-25949
An issue has been discovered in GitLab CE/EE affecting all versions before 18.1.5, 18.2 before 18.2.5, and 18.3 before 18.3.1 that under certain conditions could have allowed an authenticated attacker to distribute malicious code that appears harmless in the web interface by taking advantage of ambiguity between branches and tags during repository imports.
Code Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 MEDIUM
LOCAL
HIGH
HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:N
GitLabCNA
5 MEDIUM
LOCAL
HIGH
HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 2%
Affected Products (NVD)
VendorProductVersion
gitlabgitlab
𝑥
< 18.1.5
gitlabgitlab
𝑥
< 18.1.5
gitlabgitlab
18.2.0 ≤
𝑥
< 18.2.5
gitlabgitlab
18.2.0 ≤
𝑥
< 18.2.5
gitlabgitlab
18.3.0
gitlabgitlab
18.3.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://gitlab.com/gitlab-org/gitlab/-/issues/545165
https://hackerone.com/reports/3124199