VDB

CVE-2025-0194

CVE-2025-0194 PUBLISHED

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.4 prior to 17.5.5, starting from 17.6 prior to 17.6.3, and starting from 17.7 prior to 17.7.1. Under certain conditions, access tokens may have been logged when API requests were made in a specific manner.

EPSS 0.09% · 26.0th percentile

Risk Scores

EPSS Score
0.09%
26.0th percentile

Affected Products

VendorProductVersions
Bitnamigitlab17.4.0, 17.7.0, 17.6.0
Bitnamigitlab17.4.0, 17.7.0, 17.6.0

Timeline

  • Jan 21, 1970 Security Advisory
  • Jan 8, 2025 CVE Published
  • Jan 9, 2025 EPSS Score
  • Jan 25, 2025 EPSS Score
  • Jan 30, 2025 Coalition ESS Score
  • Feb 9, 2025 EPSS Score
  • Feb 25, 2025 EPSS Score
  • Mar 13, 2025 EPSS Score
  • Mar 28, 2025 EPSS Score
  • Apr 13, 2025 EPSS Score
  • Apr 29, 2025 EPSS Score
  • May 15, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›