CVE-2025-11990

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-11990

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-11990.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-11990

Aliases

BIT-gitlab-2025-11990

Downstream

UBUNTU-CVE-2025-11990

Published

2025-11-15T08:03:49.850Z

Modified

2025-11-21T09:28:35.558056Z

Severity

3.1 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N CVSS Calculator

Summary

Improper Handling of URL Encoding (Hex Encoding) in GitLab

Details

GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.4.4, and 18.5 before 18.5.2 that could have allowed an authenticated user to gain CSRF tokens by exploiting improper input validation in repository references combined with redirect handling weaknesses.

Database specific

{
    "cwe_ids": [
        "CWE-177"
    ]
}

References

Affected packages

Git / gitlab.com/gitlab-org/gitlab

Affected ranges

Type

GIT

Repo

https://gitlab.com/gitlab-org/gitlab

Events

Introduced

9255f56b45844196bb7657a9f1fde6aa65a5d08d

Fixed

e2798305dc3604e272e12a319a932e96c3540374

Database specific

{
    "versions": [
        {
            "introduced": "18.4"
        },
        {
            "fixed": "18.4.4"
        }
    ]
}

Type

GIT

Repo

https://gitlab.com/gitlab-org/gitlab

Events

Introduced

37cc4da7158316bb9b204cef9b056f16fff1df32

Fixed

cb961538ba8e451246e168e7bbd5b1e04f69102a

Database specific

{
    "versions": [
        {
            "introduced": "18.5"
        },
        {
            "fixed": "18.5.2"
        }
    ]
}

Affected versions

v18.*

v18.4.0-ee

v18.4.1-ee

v18.4.2-ee

v18.4.3-ee

v18.5.0-ee

v18.5.1-ee