VDB

CVE-2025-68944

CVE-2025-68944 PUBLISHED

Gitea before 1.22.2 sometimes mishandles the propagation of token scope for access control within one of its own package registries.

EPSS 0.01% · 2.4th percentile

Risk Scores

EPSS Score
0.01%
2.4th percentile

Affected Products

VendorProductVersions
Bitnamigitea0, 0
Bitnamigitea0

Timeline

  • Dec 26, 2025 CVE Published
  • Dec 26, 2025 EPSS Score
  • Dec 26, 2025 PoC Published
  • Dec 30, 2025 EPSS Score
  • Jan 2, 2026 EPSS Score
  • Jan 6, 2026 EPSS Score
  • Jan 9, 2026 EPSS Score
  • Jan 13, 2026 EPSS Score
  • Jan 17, 2026 EPSS Score
  • Jan 20, 2026 EPSS Score
  • Jan 24, 2026 EPSS Score
  • Jan 28, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›