The host is installed with GitLab CE/EE 12.4 before 15.6.7, 15.7 before 15.7.6 or 15.8 before 15.8.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an authenticated attacker to create a large issue description via GraphQL which, when repeatedly requested, saturates CPU usage.