Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

GitLab security patch release for CVE-2026-0723

Security Patch Release
First reported
Last updated
Happening score
H score 27
1 unique sources, 1 articles

Summary

Hide ▲

GitLab released 18.8.2, 18.7.2, and 18.6.4 to fix multiple security flaws in GitLab CE/EE. The update matters because one of the issues, CVE-2026-0723, is a high-severity two-factor authentication bypass. GitLab told self-managed installations to upgrade immediately, while GitLab.com was already patched.

Related Happenings

Exim security patch release for CVE-2026-45185

Security Patch Release
First: 13.05.2026 23:23 Last: 13.05.2026 23:23 Sources 1

About this happening: **Exim** released **version 4.99.3** to fix **CVE-2026-45185**, closing a **remote-code-execution risk** in affected mail servers. The patch applies to **Exim versions before 4.99...

Open Happening

GitHub CVE-2026-3854 security patch release

Security Patch Release
First: 29.04.2026 15:41 Last: 29.04.2026 15:41 Sources 1

About this happening: **GitHub** released **security fixes** for **CVE-2026-3854**, patching **GitHub.com** and supported **GitHub Enterprise Server** builds after a critical **remote code execution**...

Open Happening

Cisco security patch release for CVE-2026-20184

Security Patch Release
First: 16.04.2026 14:27 Last: 16.04.2026 14:27 Sources 1

About this happening: **Cisco** released patches for **four critical flaws** affecting **Identity Services Engine (ISE)**, **ISE-PIC**, and **Webex Services**, closing paths to **arbitrary code executi...

Open Happening

Nginx-ui 2.3.4 patch for CVE-2026-33032

Security Patch Release
First: 15.04.2026 16:00 Last: 15.04.2026 16:00 Sources 1

About this happening: **nginx-ui maintainers** shipped **version 2.3.4** to fix **CVE-2026-33032**, closing a critical security gap for **MCP-enabled** deployments. The patch matters because the flaw c...

Latest development: 15.04.2026 17:45

After Pluto Security disclosed the issue in **March 2026**, the maintainers shipped **version 2.3.4** to address **CVE-2026-33032**. The patch closed the vulnerability in the product's **AI (MCP) integration** before broader exploitation details were reported.

Open Happening

WolfSSL security patch release (CVE-2026-5194)

Security Patch Release
First: 13.04.2026 22:56 Last: 13.04.2026 22:56 Sources 1

About this happening: The **wolfSSL project** released **version 5.9.1** to fix **CVE-2026-5194**, a cryptographic validation flaw that could let vulnerable deployments accept forged certificates. The...

Open Happening

Timeline

  1. 21.01.2026 15:57 2 articles · 4mo ago

    GitLab releases patched CE/EE versions for CVE-2026-0723 and related flaws

    Mitigation Patch Update

    GitLab released versions 18.8.2, 18.7.2, and 18.6.4 for GitLab Community Edition (CE) and Enterprise Edition (EE) to fix CVE-2026-0723, a high-severity two-factor authentication bypass, along with CVE-2025-13927, CVE-2025-13928, CVE-2025-13335, and CVE-2026-1102. The company advised self-managed GitLab administrators to upgrade immediately, noted that GitLab.com was already running the patched version, and said GitLab Dedicated customers did not need to take action.

    Show sources
    Open in new tab