A critical vulnerability (CVE-2026-50751) affecting Check Point VPN has been discovered and is actively exploited. Administrators are urged to apply the latest GitLab security patches released on June 10, 2026, addressing twelve vulnerabilities. Key issues include CVE-2026-6552, which involves improper access control leading to account takeovers (CVSS 8.7), and CVE-2026-10087, a Cross-site Scripting vulnerability affecting the Analytics Dashboard.
Additionally, severe Denial of Service risks are present, including CVE-2026-7250 and CVE-2026-1500. Other notable exposures include Server-Side Request Forgery (CVE-2026-9204) and various authorization bypass vulnerabilities. Administrators must promptly upgrade their GitLab installations to protect against these threats.