VDB

CVE-2026-1747

CVE-2026-1747 PUBLISHED

GitLab has remediated an issue in GitLab EE affecting all versions from 17.11 before 18.7.5, 18.8 before 18.8.5, and 18.9 before 18.9.1 that, under certain conditions, could have allowed Developer-role users with insufficient privileges to make unauthorized modifications to protected Conan packages.

EPSS 0.01% · 2.9th percentile

Risk Scores

EPSS Score
0.01%
2.9th percentile

Affected Products

VendorProductVersions
Bitnamigitlab17.11.0, 18.9.0, 18.8.0
Bitnamigitlab17.11.0, 18.8.0, 18.9.0

Timeline

  • Feb 25, 2026 CVE Published
  • Feb 25, 2026 PoC Published
  • Feb 25, 2026 PoC Published
  • Feb 25, 2026 PoC Published
  • Feb 26, 2026 EPSS Score
  • Feb 27, 2026 EPSS Score
  • Mar 1, 2026 EPSS Score
  • Mar 2, 2026 EPSS Score
  • Mar 4, 2026 EPSS Score
  • Mar 5, 2026 EPSS Score
  • Mar 7, 2026 EPSS Score
  • Mar 8, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›