CVE-2025-3922 | GitLab Community Edition/Enterprise Edition up to 18.9.5/18.10.3/18.11.0 GraphQL API allocation of resources

A vulnerability marked as problematic has been reported in GitLab Community Edition and Enterprise Edition up to 18.9.5/18.10.3/18.11.0. This vulnerability affects unknown code of the component GraphQL API. This manipulation causes allocation of resources.

The identification of this vulnerability is CVE-2025-3922. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More