{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-02T02:10:45.452","vulnerabilities":[{"cve":{"id":"CVE-2026-1069","sourceIdentifier":"cve@gitlab.com","published":"2026-03-11T16:16:22.170","lastModified":"2026-03-13T12:35:38.543","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9 before 18.9.2 that could have allowed an unauthenticated user to cause a denial of service by sending specially crafted GraphQL requests due to uncontrolled recursion under certain circumstances."},{"lang":"es","value":"GitLab ha remediado un problema en GitLab CE/EE que afectaba a todas las versiones desde la 18.9 antes de la 18.9.2 que podría haber permitido a un usuario no autenticado causar una denegación de servicio mediante el envío de solicitudes GraphQL especialmente diseñadas debido a una recursión incontrolada bajo ciertas circunstancias."}],"metrics":{"cvssMetricV31":[{"source":"cve@gitlab.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"cve@gitlab.com","type":"Primary","description":[{"lang":"en","value":"CWE-674"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"18.9.0","versionEndExcluding":"18.9.2","matchCriteriaId":"44EAE9A6-5ED9-42F6-9BBD-0E2F8072F0D9"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"18.9.0","versionEndExcluding":"18.9.2","matchCriteriaId":"12A2DEC0-C471-4C98-960C-405209403AB9"}]}]}],"references":[{"url":"https://about.gitlab.com/releases/2026/03/11/patch-release-gitlab-18-9-2-released/","source":"cve@gitlab.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://gitlab.com/gitlab-org/gitlab/-/work_items/586474","source":"cve@gitlab.com","tags":["Broken Link"]},{"url":"https://hackerone.com/reports/3483687","source":"cve@gitlab.com","tags":["Permissions Required"]}]}}]}