CVE-2025-11974 | GitLab Community Edition/Enterprise Edition up to 18.3.4/18.4.2/18.5.0 API Endpoint allocation of resources (Patch 571761)

A vulnerability marked as problematic has been reported in GitLab Community Edition and Enterprise Edition up to 18.3.4/18.4.2/18.5.0. This affects an unknown part of the component API Endpoint. Performing manipulation results in allocation of resources.

This vulnerability is identified as CVE-2025-11974. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More