HarborGuard / CVE
Back to search
HIGHCVE-2026-4868Published Modified CNA GitLab

CVE-2026-4868: Authorization Bypass Through User-Controlled Key in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that, under certain conditions, could have allowed an authenticated user to cause specific Duo AI workflows to run under another user's identity due to improper user identity resolution when triggering Duo AI workflow runners.

HarborGuard Analysis

HarborGuard analysis

Synopsis

An authorization bypass vulnerability in GitLab EE allows an authenticated attacker to hijack Duo AI workflow execution under another user's identity. The vulnerability is reachable over the network, requires a low-privilege account, and exploits improper user identity resolution when triggering Duo AI workflow runners. Successful exploitation gives the attacker read and write access scoped to the impersonated user's permissions, without that user's knowledge. A patched-image rebuild at versions 18.10.7, 18.11.4, and 19.0.1 is available on HarborGuard for affected environments.

HarborGuard Coverage

Detection

Detection of CVE-2026-4868 is available across every HarborGuard environment, with the CVE matched against customer images within minutes of publication from upstream feeds including the GitLab CNA advisory. Coverage extends to custom-built images that bundle affected GitLab EE versions, not only official distribution images.

Available
Triage

HarborGuard scores this CVE at 8.2 HIGH using the published CVSS v3.1 vector and weights it against each environment's compliance policy to determine breach-of-threshold status. Triage findings are routed to the team inbox configured for the affected workload within each customer org.

Available
Patch

A patched-image rebuild at GitLab EE versions 18.10.7, 18.11.4, and 19.0.1 becomes available on HarborGuard once the fix versions are confirmed in the upstream advisory. For customers who opt into auto-remediation, HarborGuard runs a rebuild, executes regression tests, and opens a PR against affected workloads automatically.

Available

Exploit Conditions

  • Network reachabilityRequired

    The attacker must reach the GitLab EE service over the network to trigger the Duo AI workflow runner endpoint.

  • AuthenticationRequired

    A valid GitLab account is required; any low-privilege user account is sufficient to attempt the identity-resolution bypass.

  • Victim interactionNot required

    No action from the impersonated user or any other party is needed to complete the attack.

  • Attack complexityDetail

    Exploitation is rated High complexity, meaning specific conditions in the environment or timing must align for the identity resolution flaw to be triggered reliably.

Blast Radius

  • The attacker reads repository contents, issues, merge requests, and other data accessible to the impersonated user.
  • The attacker writes on behalf of the impersonated user, including creating commits, approving merge requests, or modifying project settings within that user's permission scope.
  • Because the scope is Changed (S:C), impact can extend beyond the attacker's own GitLab account into projects and groups the victim user has access to.
  • No availability impact is introduced; the service continues running while the unauthorized access occurs silently.

How HarborGuard Handles This

Available on HarborGuard: for any image found running a vulnerable GitLab EE version (18.8 through pre-18.10.7, 18.11 through pre-18.11.4, or 19.0 through pre-19.0.1), a rebuilt image pinned to the corresponding fix version (18.10.7, 18.11.4, or 19.0.1) is available as soon as the upstream packages are resolvable. For customers who opt into auto-remediation, HarborGuard triggers a rebuild, runs a regression suite against the new image, and opens a pull request against affected workload manifests. For high-severity CVEs of this class, median time from CVE publication to a merged patch PR is around 90 minutes in environments with auto-remediation enabled. Where compliance policy requires manual approval, HarborGuard surfaces the finding with full CVSS detail and fix-version mapping so reviewers can act without additional research. Given the Changed scope and the network-accessible attack surface, teams that cannot patch immediately should consider restricting network access to GitLab EE Duo AI workflow endpoints via network policy until the upgrade is applied.

See how HarborGuard automates this

Metrics

CVSS v3.1
8.2
Severity
HIGH
Fixed in
18.10.7
Affected Products
1

Fix available

18.10.718.11.419.0.1
Affected packages
  • GitLab / GitLab
    < 18.10.7 (from 18.8) · < 18.11.4 (from 18.11) · < 19.0.1 (from 19.0)
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
References