Security News > 2025 > March > GitLab patches critical authentication bypass vulnerabilities

GitLab patches critical authentication bypass vulnerabilities

2025-03-13 16:13

GitLab released security updates for Community Edition (CE) and Enterprise Edition (EE), fixing nine vulnerabilities, among which two critical severity ruby-saml library authentication bypass flaws. [...]

News URL

https://www.bleepingcomputer.com/news/security/gitlab-patches-critical-authentication-bypass-vulnerabilities/

#authentication #bypass #critical #gitlab #vulnerabilities

Related news

Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches (source)
Netgear warns users to patch critical WiFi router vulnerabilities (source)
Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc (source)
Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software (source)
PAN-OS authentication bypass hole plugged, PoC is public (CVE-2025-0108) (source)
Hackers exploit authentication bypass in Palo Alto Networks PAN-OS (source)
Juniper Session Smart Routers Vulnerability Could Let Attackers Bypass Authentication (source)
Juniper patches critical auth bypass in Session Smart routers (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Gitlab		10	47	739	246	58	1090

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.