Multiple vulnerabilities were identified in GitLab. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure, security restriction bypass, spoofing and cross-site scripting on the targeted system. GitLab has released versions 14.7.1, 14.6.4 and 14.5.4 for GitLab Community Edition (CE) and Enterprise Edition (EE).

More information on vulnerabilities and updates is available in GitLab security advisory – gitlab.com.