CVE-2026-1868 – Improper Neutralization of Special Elements Used in a Template Engine in GitLab AI Gateway

CVE ID : CVE-2026-1868

Published : Feb. 9, 2026, 6:33 a.m. | 46 minutes ago

Description : GitLab has remediated a vulnerability in the Duo Workflow Service component of GitLab AI Gateway affecting all versions of the AI Gateway from 18.1.6, 18.2.6, 18.3.1 to 18.6.1, 18.7.0, and 18.8.0 in which AI Gateway was vulnerable to insecure template expansion of user supplied data via crafted Duo Agent Platform Flow definitions. This vulnerability could be used to cause Denial of Service or gain code execution on the Gateway. This has been fixed in versions 18.6.2, 18.7.1, and 18.8.1 of the GitLab AI Gateway.

Severity: 9.9 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2026-1868 – Improper Neutralization of Special Elements Used in a Template Engine in GitLab AI Gateway

تکمیل ظرفیت سرور لهستان

سرور مناسب برای ترید و ارز دیجیتال

دیتاسنتر جدید در لهستان

سرور های جدید از اسپانیا

AMD EPYC & Ryzen از کشور انگلستان

آفر های جدید AMD EPYC و AMD Ryzen

آفر سرور اختصاصی از آمریکا

افزایش قیمت دامنه های ir از ۳۱ خرداد

افزایش قیمت جهانی دامنه .com

آفر های جدید سرور اختصاصی مرداد 1403

CVE-2026-22906 – Hardcoded Key Allows Credential Disclosure

سرور های جدید از روسیه-وارز

تخفیف ویژه دامنه .ASIA

ثبت دامنه .IO

انتقال رایگان پسوند دامنه PW

Kerio Control 9.2.4 Build 2223

نوشته های مشابه

CVE-2026-2225 – itsourcecode News Portal Project Administrator Login index.php sql injection

CVE-2026-25905 – Lack of isolation in mcp-run-python leads to MCP server takeover

CVE-2026-25904 – Overly permissive Deno configuration in mcp-run-python leads to SSRF

CVE-2026-2224 – code-projects Online Reviewer System btn_functions.php cross site scripting