Auth bypass in Gerrit
CVE-2026-2725
Incorrect authorization in the "submitted together" feature in Gerrit versions 2.12 and later allows an authenticated attacker with force push permissions on a secondary branch to bypass code review and forcefully submit code to restricted…
Vulnerability class: Broken Access Control
EPSS: 0.000 (10.8th percentile) — read the EPSS interpretation.
Affected products
- Gerrit — versions 2.12; 0