Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-8279

Insufficient input validation within GitLab Language Server 7.6.0 and later before 7.30.0 allows arbitrary GraphQL query execution

Published

2025-07-28T14:15:28.857

Last Modified

2025-08-11T18:59:40.013

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.7 (HIGH)

Weaknesses
  • Type: Primary
    CWE-306
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application gitlab language_server < 7.30.0 Yes
References