CVE-2026-6063 | GitLab Enterprise Edition up to 18.9.6/18.10.5/18.11.2 Merge Request authorization

A vulnerability was found in GitLab Enterprise Edition up to 18.9.6/18.10.5/18.11.2. It has been rated as problematic. Affected by this vulnerability is an unknown functionality of the component Merge Request Handler. Performing a manipulation results in authorization bypass.

This vulnerability is known as CVE-2026-6063. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More