CVE-2021-39935: GitLab Community and Enterprise Editions Server-Side

GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability. GitLab Community and Enterprise Editions contain a server-side request forgery vulnerability which could allow unauthorized external users to perform Server Side Requests via the CI Lint API.

• CISA KEV-listed (remediation due 2026-02-24)
• EPSS 64.5% (98.5% percentile)

Browse the CVE database

Read the full analysis on IntelFusions