VDB

GCVE-VVD-NCSC-2025-87

GCVE-VVD-NCSC-2025-87
Advisory PublishedCVSS 2.7/10
Vulnetix · Advisory published March 14, 2025
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
Download JSON Open in Console

Weaknesses (CWE)

CWE-863Incorrect AuthorizationCWE-77Improper Neutralization of Special Elements used in a Command ('Command Injection')CWE-209Generation of Error Message Containing Sensitive InformationCWE-770Allocation of Resources Without Limits or ThrottlingCWE-347Improper Verification of Cryptographic SignatureCWE-94Improper Control of Generation of Code ('Code Injection')

Risk Scores

CVSS 3.1
2.7/10
Low · CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

Affected Products

VendorProductVersionsPlatforms
GitLabvers:semver/<17.7.7
GitLabvers:semver/17.8|<17.8.5
GitLabvers:unknown/17.8.4
GitLabvers:unknown/17.7.3
GitLabvers:unknown/17.7.2
GitLabvers:unknown/17.9.0
GitLabvers:unknown/17.7.0
GitLabvers:unknown/17.8.3
GitLabvers:unknown/17.7.4
GitLabvers:unknown/17.7.1
GitLabvers:unknown/17.8.0
GitLabvers:semver/17.2|<17.7.7
GitLabvers:unknown/17.8.1
GitLabvers:semver/11.5|<17.7.7
GitLabvers:unknown/17.7.5
GitLabvers:semver/16.9|<17.7.7
GitLabvers:semver/12.3|<17.7.7
GitLabvers:semver/16.5|<17.7.7
GitLabvers:unknown/17.7.6
GitLabvers:unknown/17.9.1
GitLabvers:semver/17.9|<17.9.2
GitLabvers:unknown/17.8.2

Aliases

CVE-2025-0652CVE-2025-27407CVE-2024-12380CVE-2024-7296CVE-2024-13054CVE-2025-1257CVE-2025-25291CVE-2024-8402CVE-2025-25292

Transitive aliases

VVD-ANCHORE-2025-25292GHSA-xq5v-g7v7-8q74BDU:2025-02903GHSA-3cg7-x7vx-225cVVD-ANCHORE-2025-25293VVD-ANCHORE-2024-12380VVD-ANCHORE-2024-13054VVD-ANCHORE-2025-25291GHSA-2gjq-2933-hpjgBDU:2025-03644VVD-CESS-2025-66567BDU:2025-02902BDU:2025-03646GHSA-4vc4-m8qh-g8jmBDU:2025-02782BDU:2025-02819CVE-2025-25293GHSA-9v8j-x534-2fx3NCSC-2025-0087WID-SEC-W-2025-0561GHSA-q92j-grw3-h492GHSA-92rq-c8cf-prrqWID-SEC-W-2025-0549VVD-ANCHORE-2025-0652BDU:2025-03643GHSA-hw46-3hmr-x9xvVVD-ANCHORE-2025-66567BDU:2025-03642BIT-GITLAB-2025-25293VVD-ANCHORE-2024-7296GHSA-jj7w-rgj3-p8jwBIT-GITLAB-2024-13054GHSA-6gm9-64qv-5qwjVVD-ANCHORE-2025-1257BDU:2025-02818GHSA-754f-8gm6-c4r2BDU:2025-03645VVD-ANCHORE-2024-8402BIT-GITLAB-2024-12380GHSA-5mjv-86c4-mprjCVE-2025-66567

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›