GitLab Product Security Update Advisory (CVE-2026-0723)

Feb 03 2026

Overview

We have released security updates to fix vulnerabilities in GitLab products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2026-0723

GitLab CE/EE Versions: 18.6 and later but not earlier than 18.6.4
GitLab CE/EE Versions: 18.7 and above but below 18.7.2
GitLab CE/EE versions: 18.8 and above but below 18.8.2

Resolved Vulnerabilities

Authentication Service Return Value Unvalidation Vulnerability in GitLab CE/EE (CVE-2026-0723)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2026-0723

GitLab CE/EE Version: 18.6.4
GitLab CE/EE Version: 18.7.2
GitLab CE/EE version: 18.8.2

References

[1] GitLab Patch Release: 18.8.2, 18.7.2, 18.6.4
https://about.gitlab.com/releases/2026/01/21/patch-release-gitlab-18-8-2-released/

Tags:

Microsoft Edge browser (144.0.3719.104) version security update advisory