Vulnerabilities

CVE-2025-11865 - Incorrect Authorization in GitLab

2025-11-15 0 views admin
CVE-2025-11865 - Incorrect Authorization in GitLab

CVE ID : CVE-2025-11865 Published : Nov. 15, 2025, 8:15 a.m. | 41 minutes ago Description : An issue has been discovered in GitLab EE affecting all versions from 18.1 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18.5.2 that, under certain circumstances, could have allowed an attacker to remove Duo flows of another user. Severity: 4.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

Severity
MEDIUM
Published
Nov. 15, 2025
Affected Product: GitLab

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-11865medium

More from Vulnerabilities

CVE-2025-15252 - Tenda M3 setDhcpAP formSetRemoteDhcpForAp stack-based overflow

CVE-2025-15252 - Tenda M3 setDhcpAP formSetRemoteDhcpForAp stack-based overflow

2025-12-30 0
CVE-2025-15253 - Tenda M3 exeCommand stack-based overflow

CVE-2025-15253 - Tenda M3 exeCommand stack-based overflow

2025-12-30 0
CVE-2025-68618 - Magick's failure to limit the depth of SVG file reads caused a DoS attack.

CVE-2025-68618 - Magick's failure to limit the depth of SVG file reads caused a DoS attack.

2025-12-30 0
CVE-2025-15255 - Tenda W6-S R7websSsecurityHandler httpd stack-based overflow

CVE-2025-15255 - Tenda W6-S R7websSsecurityHandler httpd stack-based overflow

2025-12-30 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views