First published: Thu Mar 10 2022(Updated: )
Missing Authorization in GitHub repository go-gitea/gitea prior to 1.16.4.
Credit: security@huntr.dev
Affected Software | Affected Version | How to fix |
---|---|---|
Gitea Gitea | <1.16.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-0905 is a vulnerability in the GitHub repository go-gitea/gitea prior to version 1.16.4 that allows unauthorized access.
CVE-2022-0905 has a severity rating of 7.1 (high).
CVE-2022-0905 affects Gitea versions up to and excluding 1.16.4.
The CWE for CVE-2022-0905 is CWE-862.
To fix CVE-2022-0905, it is recommended to upgrade Gitea to version 1.16.4 or later.