Bleepingcomputer
GitLab 2FA Bypass Vulnerability Patched
First seen 22 Jan 2026, 02:59 UTC
•

•85% similarity
•36.9
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
GitLab has patched a critical two-factor authentication bypass vulnerability, tracked as CVE-2026-0723, affecting both Community and Enterprise editions of its application development platform. The flaw allows attackers with knowledge of a target's account ID to circumvent two-factor authentication. GitLab has released updates to address this issue along with four other vulnerabilities.
ThreatCluster AI