A vulnerability labeled as problematic has been found in GitLab Enterprise Edition up to 18.9.6/18.10.5/18.11.2 . This vulnerability affects unknown code of the component Merge Request Handler . The manipulation results in missing authorization. This vulnerability was named CVE-2026-6883 . The attack may be performed from remote. There is no available exploit. The affected component should be upgraded.