CVE-2025-68941 - CERT CVE

  1. CVE-2025-68941

ID CVE-2025-68941
Sažetak Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope limited to public resources.
Reference
CVSS
Base: 4.9
Impact: 2.7
Exploitability:1.8
Pristup
VektorSloženostAutentikacija
NETWORK HIGH LOW
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW NONE
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
Zadnje važnije ažuriranje 26-12-2025 - 03:15
Objavljeno 26-12-2025 - 03:15