VDB

CVE-2024-9183

CVE-2024-9183 PUBLISHED

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 prior to 18.4.5, 18.5 prior to 18.5.3, and 18.6 prior to 18.6.1 that could have allowed an authenticated user to obtain credentials from higher-privileged users and perform actions in their context under specific conditions.

EPSS 0.01% · 0.8th percentile

Risk Scores

EPSS Score
0.01%
0.8th percentile

Affected Products

VendorProductVersions
Bitnamigitlab18.4.0, 18.5.0, 18.6.0
Bitnamigitlab18.4.0, 18.6.0, 18.5.0

Timeline

  • Nov 27, 2025 CVE Published
  • Dec 6, 2025 EPSS Score
  • Dec 10, 2025 EPSS Score
  • Dec 15, 2025 EPSS Score
  • Dec 19, 2025 EPSS Score
  • Dec 23, 2025 EPSS Score
  • Dec 28, 2025 EPSS Score
  • Jan 1, 2026 EPSS Score
  • Jan 5, 2026 EPSS Score
  • Jan 9, 2026 EPSS Score
  • Jan 14, 2026 EPSS Score
  • Jan 18, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›