First published: Tue May 03 2022(Updated: )
An arbitrary file deletion vulnerability in Gitea v1.16.3 allows attackers to cause a Denial of Service (DoS) via deleting the configuration file.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Gitea Gitea | =1.16.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-27313 is an arbitrary file deletion vulnerability in Gitea v1.16.3 that allows attackers to cause a Denial of Service (DoS) by deleting the configuration file.
CVE-2022-27313 has a severity value of 7.5, which is considered high.
CVE-2022-27313 affects Gitea v1.16.3.
To fix CVE-2022-27313, update Gitea to a version that is not vulnerable or apply the necessary patches provided by the vendor.
You can find more information about CVE-2022-27313 at the following link: https://github.com/go-gitea/gitea/pull/19072