CVE-2025-5819: 
GitLab vulnerability analysis and mitigation

GitLab has identified and patched CVE-2025-5819, an Incorrect Permission Assignment vulnerability affecting the ID token functionality in GitLab Community Edition (CE) and Enterprise Edition (EE). The vulnerability was discovered in versions from 15.7 before 17.11.6, 18.0 before 18.0.4, and 18.1 before 18.1.2. This security issue was reported through GitLab's HackerOne bug bounty program by researcher skybound (GitLab Patch).

The vulnerability has been assigned a CVSS score of 5.0 (Medium) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N. The flaw could allow authenticated users with developer access to obtain ID tokens for protected branches under specific circumstances (GitLab Patch).

The vulnerability enables authenticated users with developer-level access to potentially obtain ID tokens for protected branches, which could lead to unauthorized access to protected resources. This represents a security boundary bypass that could impact the confidentiality of protected branch data (GitLab Patch).

GitLab has released patches in versions 18.2.2, 18.1.4, and 18.0.6 to address this vulnerability. Organizations are strongly recommended to upgrade to these patched versions immediately. GitLab.com has already been updated with the security fix, and GitLab Dedicated customers do not need to take any action (GitLab Patch, Security Online).

The security community has actively tracked this vulnerability as part of a larger security update from GitLab. Security researchers and industry professionals have emphasized the importance of prompt patching, particularly given the potential for unauthorized access to protected resources (GBHackers).