CVE-2025-68941

Опубликовано: 26 дек. 2025

Источник: debian

EPSS Низкий

Описание

Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope limited to public resources.

Пакет	Статус	Версия исправления	Релиз	Тип
gitea	removed			package

EPSS

Процентиль: 2%

0.00013

Низкий

CVE-2025-68941

CVSS3: 4.9

ubuntu

3 месяца назад

Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope limited to public resources.

CVE-2025-68941

CVSS3: 4.9

redhat

3 месяца назад

Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope limited to public resources.

CVE-2025-68941

CVSS3: 4.9

nvd

3 месяца назад

Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope limited to public resources.

ROS-20260224-73-0034

CVSS3: 5.3

redos

около 1 месяца назад

Уязвимость gitea

GHSA-xfq3-qj7j-4565

CVSS3: 4.9

github

3 месяца назад

Gitea mishandles access to a private resource upon receiving an API token with scope limited to public resources

EPSS

Процентиль: 2%

0.00013

Низкий