GitLab Fixes Critical Authentication Bypass Vulnerabilities in CE and EE Editions
BreakingNewsSecurityGitLabHackinghackingnewsinformationsecuritynewsITInformationSecurityPierluigiPaganiniSecurityAffairsSecurityNews
GitLab has addressed two critical authentication bypass vulnerabilities in its Community (CE) and Enterprise (EE) editions. The company released security updates to fix nine vulnerabilities, including two critical authentication bypass issues in ruby-saml, identified as CVE-2025-25291 and CVE-2025-25292. The affected versions include GitLab CE/EE 17.7.7 and 17.8.5.