What is the CVSS score of EUVD-2026-30220?

EUVD-2026-30220 has a CVSS 3.1 base score of 6.8 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N. EPSS exploitation probability: 0.0%.

Is there a public PoC exploit available for EUVD-2026-30220?

Yes, a public proof-of-concept exploit is available for EUVD-2026-30220. Prioritise patching immediately. EPSS: 0.0%.

Is there a patch available for EUVD-2026-30220?

Yes, a patch is available for EUVD-2026-30220. Update the affected software to the latest version immediately.

GitLab CE/EE EUVD-2026-30220

| CVE-2026-1322 MEDIUM

Business Logic Errors (CWE-840)

2026-05-14 cve@gitlab.com

GHSA-27g3-rwx2-w54w

Information Disclosure Gitlab

6.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

6.8 MEDIUM

AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

Analysis Generated

Jun 08, 2026 - 11:26 vuln.today

Patch available

May 14, 2026 - 07:01 EUVD

CVE Published

May 14, 2026 - 06:16 nvd

MEDIUM 6.8

DescriptionCVE.org

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.0 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with a read_api scoped OAuth application to create issues and add comments to issues in private projects due to improper authorization.

AnalysisAI

OAuth scope enforcement bypass in GitLab CE/EE allows an authenticated user holding a read_api-scoped OAuth token to perform unauthorized write operations - specifically creating issues and adding comments - in private projects. Affected are all GitLab Community and Enterprise Edition installations from version 16.0 up to the patched releases 18.9.7, 18.10.6, and 18.11.3. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticate to GitLab with valid credentials

Delivery

Exploit

Obtain read_api-scoped OAuth access token

Execution

Identify target private project path

Persist

Issue write API request (create issue or comment) using read_api token

Impact

Unauthorized content injected into private project

Access

Authenticate to GitLab with valid credentials

Delivery

Exploit

Obtain read_api-scoped OAuth access token

Execution

Identify target private project path

Persist

Issue write API request (create issue or comment) using read_api token

Impact

Unauthorized content injected into private project

Vulnerability AssessmentAI

Exploitation	The attacker must be an authenticated GitLab user with the ability to create OAuth applications on the target instance - a capability available to regular users by default unless administratively restricted. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 6.8 (AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N) signals a network-reachable, authenticated attack with high confidentiality and integrity impact but with elevated attack complexity (AC:H), suggesting non-trivial preconditions. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker with a valid GitLab account registers an OAuth application and requests only the read_api scope, obtaining a token that appears limited to read operations. Using that token, the attacker submits authenticated API requests to create issues or post comments in private projects they have no explicit write membership in - injecting content such as phishing links, false security reports, or misinformation into internal project trackers. …
Remediation	Upgrade to one of the patched GitLab releases: 18.9.7, 18.10.6, or 18.11.3, published 2026-05-13 per the vendor advisory at https://about.gitlab.com/releases/2026/05/13/patch-release-gitlab-18-11-3-released/. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-8589 HIGH This Week POC

8.7 Jun 11

Stored cross-site scripting and account integrity abuse in GitLab Enterprise Edition versions 13.1.4 through 18.10.7, 18

CVE-2026-10087 HIGH This Week POC

8.7 Jun 11

Stored cross-site scripting in GitLab Enterprise Edition's Analytics Dashboard allows an authenticated developer-role us

CVE-2026-6552 HIGH This Week POC

8.7 Jun 11

Account takeover in GitLab Enterprise Edition versions 15.5 through 19.0.2 allows an authenticated group Owner to hijack

CVE-2026-7250 HIGH This Week POC

7.5 Jun 11

Denial of service in GitLab CE/EE versions 12.10 through 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 allows un

CVE-2026-1500 MEDIUM This Month POC

6.5 Jun 11

Uncontrolled resource consumption in GitLab CE/EE's file upload processing pipeline enables any authenticated user to tr

EUVD-2026-30220 vulnerability details – vuln.today

Back

GitLab CE/EE EUVD-2026-30220

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

More from same product – last 7 days

Share

External POC / Exploit Code