GHSA-rrcw-5rjv-vj26

Опубликовано: 26 дек. 2025

Источник: github

Github: Прошло ревью

CVSS3: 3.1

Описание

Gitea doesn't adequately enforce branch deletion permissions after merging a pull request.

In Gitea before 1.22.5, branch deletion permissions are not adequately enforced after merging a pull request.

Ссылки

Пакеты

Наименование

code.gitea.io/gitea

Затронутые версииВерсия исправления

< 1.22.5

1.22.5

EPSS

Процентиль: 9%

0.00032

Низкий

3.1 Low

CVSS3

CVE ID

CVE-2025-68940

Дефекты

CWE-863

Связанные уязвимости

CVE-2025-68940

CVSS3: 3.1

ubuntu

21 день назад

In Gitea before 1.22.5, branch deletion permissions are not adequately enforced after merging a pull request.

CVE-2025-68940

CVSS3: 3.1

nvd

21 день назад

In Gitea before 1.22.5, branch deletion permissions are not adequately enforced after merging a pull request.

CVE-2025-68940

CVSS3: 3.1

debian

21 день назад

In Gitea before 1.22.5, branch deletion permissions are not adequately ...

EPSS

Процентиль: 9%

0.00032

Низкий

3.1 Low

CVSS3

CVE ID

CVE-2025-68940

Дефекты

CWE-863