VDB
CVE-2024-9183
CVE-2024-9183
PUBLISHED
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 prior to 18.4.5, 18.5 prior to 18.5.3, and 18.6 prior to 18.6.1 that could have allowed an authenticated user to obtain credentials from higher-privileged users and perform actions in their context under specific conditions.
EPSS 0.01% · 0.8th percentile
Risk Scores
EPSS Score
0.01%
0.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitlab | 18.4.0, 18.5.0, 18.6.0 |
| Bitnami | gitlab | 18.4.0, 18.6.0, 18.5.0 |
Timeline
- Nov 27, 2025 CVE Published
- Dec 6, 2025 EPSS Score
- Dec 10, 2025 EPSS Score
- Dec 15, 2025 EPSS Score
- Dec 19, 2025 EPSS Score
- Dec 23, 2025 EPSS Score
- Dec 28, 2025 EPSS Score
- Jan 1, 2026 EPSS Score
- Jan 5, 2026 EPSS Score
- Jan 9, 2026 EPSS Score
- Jan 14, 2026 EPSS Score
- Jan 18, 2026 EPSS Score