VDB

CVE-2025-68940

CVE-2025-68940 PUBLISHED

In Gitea before 1.22.5, branch deletion permissions are not adequately enforced after merging a pull request.

EPSS 0.01% · 1.7th percentile

Risk Scores

EPSS Score
0.01%
1.7th percentile

Affected Products

VendorProductVersions
Bitnamigitea0, 0
Bitnamigitea0

Timeline

  • Dec 26, 2025 CVE Published
  • Dec 26, 2025 EPSS Score
  • Dec 26, 2025 PoC Published
  • Dec 30, 2025 EPSS Score
  • Jan 2, 2026 EPSS Score
  • Jan 6, 2026 EPSS Score
  • Jan 9, 2026 EPSS Score
  • Jan 13, 2026 EPSS Score
  • Jan 17, 2026 EPSS Score
  • Jan 20, 2026 EPSS Score
  • Jan 24, 2026 EPSS Score
  • Jan 28, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›