CVE-2025-68945

Summary

In Gitea before 1.21.2, an anonymous user can visit a private user's project.

Affected Software

VendorProductVersion RangeStatus
GiteaGitea0 < 1.21.2affected

Weaknesses

  • CWE-359: CWE-359 Exposure of Private Personal Information to an Unauthorized Actor

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References