CVE-2025-9958 | GitLab Community Edition/Enterprise Edition up to 18.2.6/18.3.2/18.4.0 Configuration insertion of sensitive information into sent data (Issue 567777)

A vulnerability categorized as problematic has been discovered in GitLab Community Edition and Enterprise Edition up to 18.2.6/18.3.2/18.4.0. The affected element is an unknown function of the component Configuration Handler. Executing manipulation can lead to insertion of sensitive information into sent data.

This vulnerability appears as CVE-2025-9958. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More