CVE-2024-4025 – “GitLab Markdown DoS Vulnerability”

June 20, 2025

CVE ID : CVE-2024-4025

Published : June 20, 2025, 7:15 p.m. | 3 hours, 14 minutes ago

Description : A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions from 7.10 prior before 16.11.5, version 17.0 before 17.0.3, and 17.1 before 17.1.1. It is possible for an attacker to cause a denial of service using a crafted markdown page.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-25034 – SugarCRM Object Injection Vulnerability

Next Article CVE-2024-4994 – GitLab CSRF GraphQL Mutation Execution Vulnerability

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

I’ve tested dozens of robot vacuums. These are the three I recommend most to family and friends

These apps are quietly draining your phone battery – how to find and shut them down

184 million passwords for Google, Microsoft, Facebook, and more leaked in massive data breach

I tested the world’s thinnest SSD enclosure – here’s why it’s the perfect PC accessory for me

Syntax-Highlight – Custom Element For Syntax Highlighting Content

Syntax-Highlight – Custom Element For Syntax Highlighting Content

WelsonJS – Build a Windows app on the Windows built-in JavaScript engine

Building Smarter APIs with OpenAPI, AWS Bedrock & SageMaker Studio in Drupal 10

Critter – chess UCI engine

Critter – chess UCI engine

wfview controls icom ham radios

Stage – Git GUI client for Linux desktops

CVE-2024-4025 – “GitLab Markdown DoS Vulnerability”

Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks

ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

CVE-2025-5879 – WuKongOpenSource WukongCRM Remote Cross-Site Scripting Vulnerability

SonicWall Exploit Chain Exposes Admin Hijack Risk via CVE-2023-44221 and CVE-2024-38475

Controversia sulla paternità del codice Rust per il sottosistema DRM nel kernel Linux

CVE-2025-43851 – Adobe Retrieval-based-Voice-Conversion-WebUI Remote Code Execution Vulnerability

CVE-2025-6151 – TP-Link TL-WR940N Buffer Overflow Vulnerability

Salesforce CEO claims Microsoft’s OpenAI partnership is in the crosshairs with “a full proximal rupture” that can’t be mended

How Inclusive Design Leading and Creating Solutions for Universal Design

CVE-2024-9524 – Avira Prime Link Following Local Privilege Escalation Vulnerability

CVE-2024-4025 – “GitLab Markdown DoS Vulnerability”

Related Posts