CVE-2026-3254 | GitLab Community Edition/Enterprise Edition up to 18.11.0 Mermaid Sandbox ui layer

A vulnerability labeled as problematic has been found in GitLab Community Edition and Enterprise Edition up to 18.11.0. This affects an unknown function of the component Mermaid Sandbox. Executing a manipulation can lead to improper restriction of rendered ui layers.

This vulnerability is handled as CVE-2026-3254. The attack can be executed remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More