CVE-2026-58423

Summary

LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories

Affected Software

VendorProductVersion RangeStatus
GiteaGitea Open Source Git Server1.23.0 <= 1.26.2affected

Weaknesses

  • CWE-287: CWE-287

References