Gitlab Vulnerabilities
Comprehensive security vulnerability database for Gitlab products
2
1
7
6
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2025-14513 | 7.5 | An attacker could exploit a flaw in GitLab's API to send specially crafted data that causes the system to crash, leading to a denial of service. This vulnerability affects specific versions of GitLab and can be triggered by anyone without needing to log in. | gitlabgitlab | Exploit Available | 27 days agoMar 11, 2026 |
| CVE-2025-13929 | 7.5 | This vulnerability allows an attacker to crash the GitLab service by sending specially crafted requests to certain repository archive endpoints, effectively causing a denial of service. It affects specific versions of GitLab, and the attacker does not need to be logged in to exploit it. | gitlabgitlab | Exploit Available | 27 days agoMar 11, 2026 |
About Gitlab Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Gitlab products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.