What is the CVSS score of EUVD-2026-36231?

EUVD-2026-36231 has a CVSS 3.1 base score of 5.4 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N. EPSS exploitation probability: 0.0%.

Is there a public PoC exploit available for EUVD-2026-36231?

Yes, a public proof-of-concept exploit is available for EUVD-2026-36231. Prioritise patching immediately. EPSS: 0.0%.

Is there a patch available for EUVD-2026-36231?

Yes, a patch is available for EUVD-2026-36231. Update the affected software to the latest version immediately.

GitLab CE/EE EUVD-2026-36231

| CVE-2026-6269 MEDIUM

Incorrect Authorization (CWE-863)

2026-06-11 GitLab

GHSA-c3j7-m5hr-8w75

Gitlab Authentication Bypass

5.4

CVSS 3.1 · Vendor: GitLab

Severity by source

Vendor (GitLab) PRIMARY

5.4 MEDIUM

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

vuln.today AI

5.4 MEDIUM

Developer-role authentication required (PR:L); network-accessible GitLab interface (AV:N); limited read/write impact on hidden MRs only, no availability or scope change.

3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (GitLab).

CVSS VectorVendor: GitLab

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

None

Lifecycle Timeline

Patch available

Jun 11, 2026 - 13:01 EUVD

Analysis Generated

Jun 11, 2026 - 11:56 vuln.today

CVE Published

Jun 11, 2026 - 10:20 cve.org

MEDIUM 5.4

DescriptionCVE.org

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user with developer-role permissions to modify hidden merge requests due to incorrect authorization enforcements.

AnalysisAI

Incorrect authorization enforcement in GitLab CE/EE exposes hidden merge requests to unauthorized modification by authenticated users holding developer-role permissions. The flaw spans a wide version range - from 15.10 through the patched releases 18.10.8, 18.11.5, and 19.0.2 - meaning a large proportion of self-managed GitLab deployments are potentially affected. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticate as developer-role GitLab user

Delivery

Identify project with hidden merge requests

Exploit

Craft modification request targeting hidden MR

Execution

Submit request bypassing authorization check

Impact

Hidden merge request content modified or exfiltrated

Access

Authenticate as developer-role GitLab user

Delivery

Identify project with hidden merge requests

Exploit

Craft modification request targeting hidden MR

Execution

Submit request bypassing authorization check

Impact

Hidden merge request content modified or exfiltrated

Vulnerability AssessmentAI

Exploitation	Exploitation requires an active GitLab account with at least developer-role permissions on a project that contains hidden merge requests - hidden merge requests must exist in the targeted project for the authorization bypass to be exercisable. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	The CVSS 3.1 vector (AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N) scores 5.4 (Medium), reflecting that exploitation requires a valid developer-level account (PR:L), limiting opportunistic mass exploitation. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An authenticated GitLab user holding a developer role on a project navigates to or enumerates hidden merge requests that should be inaccessible under correct authorization logic. Leveraging the publicly available proof-of-concept from HackerOne report 3661880, the developer crafts a modification request that bypasses the hidden-status check, successfully altering the merge request content, description, or metadata. …
Remediation	The primary fix is to upgrade GitLab CE/EE to one of the patched releases: 18.10.8, 18.11.5, or 19.0.2, released on June 10, 2026, per the vendor advisory at https://about.gitlab.com/releases/2026/06/10/patch-release-gitlab-19-0-2-released/. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-8589 HIGH This Week POC

8.7 Jun 11

Stored cross-site scripting and account integrity abuse in GitLab Enterprise Edition versions 13.1.4 through 18.10.7, 18

CVE-2026-10087 HIGH This Week POC

8.7 Jun 11

Stored cross-site scripting in GitLab Enterprise Edition's Analytics Dashboard allows an authenticated developer-role us

CVE-2026-6552 HIGH This Week POC

8.7 Jun 11

Account takeover in GitLab Enterprise Edition versions 15.5 through 19.0.2 allows an authenticated group Owner to hijack

CVE-2026-7250 HIGH This Week POC

7.5 Jun 11

Denial of service in GitLab CE/EE versions 12.10 through 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 allows un

CVE-2026-1500 MEDIUM This Month POC

6.5 Jun 11

Uncontrolled resource consumption in GitLab CE/EE's file upload processing pipeline enables any authenticated user to tr

EUVD-2026-36231 vulnerability details – vuln.today

Back

GitLab CE/EE EUVD-2026-36231

Severity by source

CVSS VectorVendor: GitLab

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

More from same product – last 7 days

Share

External POC / Exploit Code