"GitLab has patched a high-severity two-factor authentication bypass impacting community and enterprise editions of its software development platform.

Tracked as CVE-2026-0723, this vulnerability stems from an unchecked return value weakness in GitLab's authentication services, allowing attackers who know the target's account ID to circumvent two-factor authentication."

tech

"GitLab has patched a high-severity two-factor authentication bypass impacting community and enterprise editions of its software development platform.

Tracked as CVE-2026-0723, this vulnerability stems from an unchecked return value weakness in GitLab's authentication services, allowing attackers who know the target's account ID to circumvent two-factor authentication."