GitLab security patch release for CVE-2026-0723
Security Patch Release
Summary
Hide ▲
Show ▼
GitLab released 18.8.2, 18.7.2, and 18.6.4 to fix multiple security flaws in GitLab CE/EE. The update matters because one of the issues, CVE-2026-0723, is a high-severity two-factor authentication bypass. GitLab told self-managed installations to upgrade immediately, while GitLab.com was already patched.
Related Happenings
Gitea Docker images security update (CVE-2026-20896)
Security Patch Release
H score51
First: 06.07.2026 19:28
Last: 06.07.2026 19:28
Sources 1
About this happening:
Gitea released **version 1.26.3** to fix **CVE-2026-20896**, closing a critical authentication-bypass risk in **Gitea Docker images**. The update removed the default **"*"** wildc...
Gitea Docker images security update (CVE-2026-20896)
Security Patch ReleaseAbout this happening: Gitea released **version 1.26.3** to fix **CVE-2026-20896**, closing a critical authentication-bypass risk in **Gitea Docker images**. The update removed the default **"*"** wildc...
Progress LoadMaster CVE-2026-8037 patch release
Security Patch Release
H score52
First: 30.06.2026 10:38
Last: 30.06.2026 10:38
Sources 1
About this happening:
**Progress** published fixed **LoadMaster** versions for **CVE-2026-8037**, closing a **pre-auth root command execution** path on appliances with the API enabled. Administrators r...
Progress LoadMaster CVE-2026-8037 patch release
Security Patch ReleaseAbout this happening: **Progress** published fixed **LoadMaster** versions for **CVE-2026-8037**, closing a **pre-auth root command execution** path on appliances with the API enabled. Administrators r...
Exim security patch release for CVE-2026-45185
Security Patch Release
H score21
First: 13.05.2026 23:23
Last: 13.05.2026 23:23
Sources 1
About this happening:
**Exim** released **version 4.99.3** to fix **CVE-2026-45185**, closing a **remote-code-execution risk** in affected mail servers. The patch applies to **Exim versions before 4.99...
Exim security patch release for CVE-2026-45185
Security Patch ReleaseAbout this happening: **Exim** released **version 4.99.3** to fix **CVE-2026-45185**, closing a **remote-code-execution risk** in affected mail servers. The patch applies to **Exim versions before 4.99...
GitHub CVE-2026-3854 security patch release
Security Patch Release
H score34
First: 29.04.2026 15:41
Last: 29.04.2026 15:41
Sources 1
About this happening:
**GitHub** released **security fixes** for **CVE-2026-3854**, patching **GitHub.com** and supported **GitHub Enterprise Server** builds after a critical **remote code execution**...
GitHub CVE-2026-3854 security patch release
Security Patch ReleaseAbout this happening: **GitHub** released **security fixes** for **CVE-2026-3854**, patching **GitHub.com** and supported **GitHub Enterprise Server** builds after a critical **remote code execution**...
Cisco security patch release for CVE-2026-20184
Security Patch Release
H score44
First: 16.04.2026 14:27
Last: 16.04.2026 14:27
Sources 1
About this happening:
**Cisco** released patches for **four critical flaws** affecting **Identity Services Engine (ISE)**, **ISE-PIC**, and **Webex Services**, closing paths to **arbitrary code executi...
Cisco security patch release for CVE-2026-20184
Security Patch ReleaseAbout this happening: **Cisco** released patches for **four critical flaws** affecting **Identity Services Engine (ISE)**, **ISE-PIC**, and **Webex Services**, closing paths to **arbitrary code executi...
Timeline
-
21.01.2026 15:57 2 articles · 5mo ago
GitLab releases patched CE/EE versions for CVE-2026-0723 and related flaws
Mitigation Patch UpdateGitLab released versions 18.8.2, 18.7.2, and 18.6.4 for GitLab Community Edition (CE) and Enterprise Edition (EE) to fix CVE-2026-0723, a high-severity two-factor authentication bypass, along with CVE-2025-13927, CVE-2025-13928, CVE-2025-13335, and CVE-2026-1102. The company advised self-managed GitLab administrators to upgrade immediately, noted that GitLab.com was already running the patched version, and said GitLab Dedicated customers did not need to take action.
Show sources
- GitLab warns of high-severity 2FA bypass, denial-of-service flaws — www.bleepingcomputer.com — 21.01.2026 15:57
- GitLab warns of high-severity 2FA bypass, denial-of-service flaws — www.bleepingcomputer.com — 21.01.2026 15:57