Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
4.3
GitLab: Authenticated users may access confidential issue titles in public projects
CVE-2026-1182
Summary
GitLab has fixed a security issue that allowed an authorized user to see confidential issue titles in public projects. This only affected users who had permission to view issues in those projects. To stay secure, update to the latest version of GitLab.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| gitlab | gitlab | > 8.14.0 , <= 18.7.6 | – |
| gitlab | gitlab | > 8.14.0 , <= 18.7.6 | – |
| gitlab | gitlab | > 18.8.0 , <= 18.8.6 | – |
| gitlab | gitlab | > 18.8.0 , <= 18.8.6 | – |
| gitlab | gitlab | > 18.9.0 , <= 18.9.2 | – |
| gitlab | gitlab | > 18.9.0 , <= 18.9.2 | – |
Original title
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.14 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to gain unaut...
Original description
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.14 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to gain unauthorized access to confidential issue title created in public projects under certain circumstances.
nvd CVSS3.1
4.3
Vulnerability type
CWE-212
Published: 12 Mar 2026 · Updated: 13 Mar 2026 · First seen: 12 Mar 2026