CVE-2025-2443: 
GitLab vulnerability analysis and mitigation

An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy bypass in a user's browser under specific conditions, affecting all versions from 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1. The vulnerability was discovered and reported through GitLab's HackerOne bug bounty program (GitLab Release).

The vulnerability is classified as a Cross-Site Scripting (XSS) issue through cache headers, identified as CWE-79 (Improper Neutralization of Input During Web Page Generation). It received a CVSS v3.1 base score of 8.7 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N, indicating network accessibility, low attack complexity, and requiring low privileges and user interaction (NVD).

The vulnerability allows attackers to perform cross-site-scripting attacks and bypass content security policy in a user's browser under specific conditions. The high CVSS score indicates significant potential impact on confidentiality and integrity, though availability is not affected (GitLab Release).

GitLab has released patches in versions 17.11.1, 17.10.5, and 17.9.7 to address this vulnerability. All GitLab installations running affected versions are strongly recommended to upgrade to one of these patched versions immediately. GitLab.com is already running the patched version, and GitLab Dedicated customers do not need to take action (GitLab Release).