CVE-2026-10733

Description

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.0 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that could have allowed an authenticated user to cause denial of service on the CI/CD Catalog page due to improper sanitization.

PUBLISHED Reserved 2026-06-03 | Published 2026-06-11 | Updated 2026-06-11 | Assigner GitLab

Problem types

CWE-1021: Improper Restriction of Rendered UI Layers or Frames

Product status

Credits

This vulnerability has been discovered internally by GitLab team member Miguel Jimeno finder

References

gitlab.com/gitlab-org/gitlab/-/work_items/600446

about.gitlab.com/...10/patch-release-gitlab-19-0-2-released/

cve.org (CVE-2026-10733)

nvd.nist.gov (CVE-2026-10733)

Download JSON