Home > Vulnerability Database > CVE-2025-0516

Mend.io Vulnerability Database

CVE-2025-0516

Date: February 12, 2025

Improper Authorization in GitLab CE/EE affecting all versions from 17.7 prior to 17.7.4, 17.8 prior to 17.8.2 allow users with limited permissions to perform unauthorized actions on critical project data.

Severity Score

4.3

Related Resources (4)

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-0516

Url: https://hackerone.com/reports/2914644

Url: https://gitlab.com/gitlab-org/gitlab/-/issues/513540

Url: https://www.mend.io/vulnerability-database/CVE-2025-0516

Severity Score

4.3

Weakness Type (CWE)

Incorrect Authorization

CWE-863

CVSS v3.1

Base Score:	4.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-0516

Date: February 12, 2025

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?