CVE-2025-68939 - CERT CVE

  1. CVE-2025-68939

ID CVE-2025-68939
Sažetak Gitea before 1.23.0 allows attackers to add attachments with forbidden file extensions by editing an attachment name via an attachment API.
Reference
CVSS
Base: 8.2
Impact: 6.0
Exploitability:1.6
Pristup
VektorSloženostAutentikacija
NETWORK HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH LOW
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:L
Zadnje važnije ažuriranje 26-12-2025 - 03:15
Objavljeno 26-12-2025 - 03:15