CVE-2025-11247 | GitLab Enterprise Edition up to 18.4.5/18.5.3/18.6.1 GraphQL authorization (Issue 573766)

A vulnerability, which was classified as problematic, was found in GitLab Enterprise Edition up to 18.4.5/18.5.3/18.6.1. The affected element is an unknown function of the component GraphQL. Such manipulation leads to authorization bypass.

This vulnerability is uniquely identified as CVE-2025-11247. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More