VDB
CVE-2026-1747
CVE-2026-1747
PUBLISHED
GitLab has remediated an issue in GitLab EE affecting all versions from 17.11 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 18.9.1 that, under certain conditions, could have allowed Developer-role users with insufficient privileges to make unauthorized modifications to protected Conan packages.
EPSS 0.01% · 2.9th percentile
Risk Scores
EPSS Score
0.01%
2.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitlab | 17.11.0, 18.9.0, 18.8.0 |
| Bitnami | gitlab | 17.11.0, 18.8.0, 18.9.0 |
Timeline
- Feb 25, 2026 CVE Published
- Feb 25, 2026 PoC Published
- Feb 25, 2026 PoC Published
- Feb 25, 2026 PoC Published
- Feb 26, 2026 EPSS Score
- Feb 27, 2026 EPSS Score
- Mar 1, 2026 EPSS Score
- Mar 2, 2026 EPSS Score
- Mar 4, 2026 EPSS Score
- Mar 5, 2026 EPSS Score
- Mar 7, 2026 EPSS Score
- Mar 8, 2026 EPSS Score