CVE 9.9 CRITICAL

Improper Neutralization of Special Elements Used in a Template Engine in GitLab AI Gateway_CVE-2026-1868

February 9, 2026 invoker category_cve
9.9 / 10
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Description

GitLab has remediated a vulnerability in the Duo Workflow Service component of GitLab AI Gateway affecting all versions of the AI Gateway from 18.1.6, 18.2.6, 18.3.1 to 18.6.1, 18.7.0, and 18.8.0 in which AI Gateway was vulnerable to insecure template expansion of user supplied data via crafted Duo Agent Platform Flow definitions. This vulnerability could be used to cause Denial of Service or gain code execution on the Gateway. This has been fixed in versions 18.6.2, 18.7.1, and 18.8.1 of the GitLab AI Gateway.

AI Analysis

Insecure template expansion vulnerability in GitLab AI Gateway allowing Denial of Service or code execution via crafted Duo Agent Platform Flow definitions

Basic Information

ID CVE-2026-1868
Source GitLab
Published Feb 9, 2026 at 06:33

Affected Product

Vendor GitLab
Product GitLab AI Gateway
Version 18.1.6
Affected Versions GitLab GitLab AI Gateway 18.1.6
GitLab GitLab AI Gateway 18.7.0
GitLab GitLab AI Gateway 18.8.0

CWE Classification

CWE-1336

AI Assessment

AI Score 9.9 / 10
AI Severity Critical
Vendor GitLab
Product GitLab AI Gateway
Version 18.1.6, 18.2.6, 18.3.1, 18.6.1, 18.7.0, 18.8.0

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.