VDB
BIT-gitea-2025-68941
BIT-gitea-2025-68941
PUBLISHED
CVSS 5.300000190734863 MEDIUM
Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope limited to public resources.
Risk Scores
CVSS v3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitea | 0, 0, 0 |
Timeline
- Jan 3, 2026 CVE Published
- Jan 3, 2026 CVE Updated