VDB
CVE-2025-68944
CVE-2025-68944
PUBLISHED
Gitea before 1.22.2 sometimes mishandles the propagation of token scope for access control within one of its own package registries.
EPSS 0.01% · 2.4th percentile
Risk Scores
EPSS Score
0.01%
2.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitea | 0, 0 |
| Bitnami | gitea | 0 |
Timeline
- Dec 26, 2025 CVE Published
- Dec 26, 2025 EPSS Score
- Dec 26, 2025 PoC Published
- Dec 30, 2025 EPSS Score
- Jan 2, 2026 EPSS Score
- Jan 6, 2026 EPSS Score
- Jan 9, 2026 EPSS Score
- Jan 13, 2026 EPSS Score
- Jan 17, 2026 EPSS Score
- Jan 20, 2026 EPSS Score
- Jan 24, 2026 EPSS Score
- Jan 28, 2026 EPSS Score