VDB

CVE-2025-10868

CVE-2025-10868 PUBLISHED

An issue has been discovered in GitLab CE/EE affecting all versions from 17.4 before 18.2.7, 18.3 before 18.3.3, and 18.4 before 18.4.1 where certain string conversion methods exhibit performance degradation with large inputs.

EPSS 0.02% · 3.3th percentile

Risk Scores

EPSS Score
0.02%
3.3th percentile

Affected Products

VendorProductVersions
Bitnamigitlab18.3.0, 17.4.0, 18.4.0
Bitnamigitlab17.4.0, 18.3.0, 18.4.0

Timeline

  • Jan 21, 1970 Security Advisory
  • Sep 26, 2025 CVE Published
  • Sep 26, 2025 EPSS Score
  • Sep 29, 2025 Coalition ESS Score
  • Oct 1, 2025 CVE Updated
  • Oct 3, 2025 EPSS Score
  • Oct 9, 2025 EPSS Score
  • Oct 16, 2025 EPSS Score
  • Oct 23, 2025 EPSS Score
  • Oct 29, 2025 Coalition ESS Score
  • Oct 30, 2025 EPSS Score
  • Nov 5, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›