CVE-2025-4972 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-4972 PUBLISHED

An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1 before 18.1.2 that could have allowed authenticated users with invitation privileges to bypass group-level user invitation restrictions by manipulating group invitation functionality.

EPSS 0.02% · 3.6th percentile

Risk Scores

EPSS Score

0.02%

3.6th percentile

Affected Products

Vendor	Product	Versions
Bitnami	gitlab	18.0.0
Bitnami	gitlab	18.0.0

Timeline

Jan 21, 1970 Security Advisory
Jul 9, 2025 CVE Published
Jul 10, 2025 EPSS Score
Jul 10, 2025 Coalition ESS Score
Jul 10, 2025 Coalition ESS Score
Jul 10, 2025 CVE Updated
Jul 19, 2025 EPSS Score
Jul 25, 2025 Coalition ESS Score
Jul 28, 2025 EPSS Score
Aug 6, 2025 EPSS Score
Aug 15, 2025 EPSS Score
Aug 23, 2025 EPSS Score

References

Open in Interactive Console →