July 2, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
GuLoader Malspam Campaign – Active IOCs
June 23, 2025
Multiple WordPress Plugins Vulnerabilities
June 23, 2025
GuLoader Malspam Campaign – Active IOCs
June 23, 2025
Multiple WordPress Plugins Vulnerabilities
June 23, 2025
Severity
Medium
Analysis Summary
CVE-2024-9512 CVSS:5.3
GitLab could allow a remote authenticated attacker to obtain sensitive information, caused by a race condition when a secondary node is out of sync.
CVE-2025-5996 CVSS:6.5
GitLab is vulnerable to a denial of service, caused by a lack of input validation in HTTP responses.
Impact
- Information Disclosure
- Denial of Service
Indicators of Compromise
CVE
CVE-2024-9512
CVE-2025-5996
Affected Vendors
- GitLab
Affected Products
- GitLab 2.10
- GitLab 17.11
- GitLab 18.0
Remediation
Upgrade to the latest version of GitLab, available from the GitLab Website.