CVE-2025-7449 – Allocation of Resources Without Limits or Throttling in GitLab

CVE ID : CVE-2025-7449

Published : Nov. 26, 2025, 7:46 p.m. | 35 minutes ago

Description : GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.4.5, 18.5 before 18.5.3, and 18.6 before 18.6.1 that could have allowed an authenticated user with specific permissions to cause a denial of service condition through HTTP response processing.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…