A vulnerability classified as problematic was found in GitLab Community Edition and Enterprise Edition up to 18.9.6/18.10.5/18.11.2 . The impacted element is an unknown function of the component Private Group Handler . Executing a manipulation can lead to missing authorization. This vulnerability is tracked as CVE-2026-8144 . The attack can be launched remotely. No exploit exists. Upgrading the affected component is advised.