CVE-2025-3950 | GitLab Community Edition/Enterprise Edition up to 18.5.4/18.6.2/18.7.0 Asset Proxy Protection private personal information (Issue 537697)

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 18.5.4/18.6.2/18.7.0. It has been classified as problematic. This impacts an unknown function of the component Asset Proxy Protection. This manipulation causes exposure of private personal information to an unauthorized actor.

This vulnerability is handled as CVE-2025-3950. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More