CVE-2024-9631

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 5, 2025

CWE ID 407

Summary

CVE-2024-9631 is a vulnerability affecting GitLab CE/EE versions beginning with 13.6, prior to 17.2.9, and versions starting with 17.3, prior to 17.3.5, as well as versions starting with 17.4, prior to 17.4.2. This issue slows down the process of viewing diffs for merge requests with conflicts. GitLab users running these affected versions are advised to upgrade as soon as possible to mitigate this performance issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

GitLab

Affected Vendors

GitLab Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/zT-ceQ
https://www.cve.org/CVERecord?id=CVE-2024-9631
https://nvd.nist.gov/vuln/detail/CVE-2024-9631

Back to Vulnerability Database