Scaner-VSvulnerability catalog · v4.2

Home Catalog Sources CWE CAPEC ATT&CK Mitigations Products Vendors Docs

← Back to List

Canonical›Distributionubuntu

Gitea

Vulnerabilities

4

Known exploited

0

Max CVSS

9.8

Top EPSS

0.08762

Severity breakdown

Critical

1

High

2

Medium

1

Low

0

Also matched as (raw): gitea

Top vulnerabilities

CVE-2021-45331An Authentication Bypass vulnerability exists in Gitea before 1.5.0, which could let a malicious user gain privileges. If captured, the TOTP code for the 2FA can be submitted correctly more than once.

CVE-2021-3382Stack buffer overflow vulnerability in gitea 1.9.0 through 1.13.1 allows remote attackers to cause a denial of service (crash) via vectors related to a file path.

CVE-2022-0905Missing Authorization in GitHub repository go-gitea/gitea prior to 1.16.4.

CVE-2021-28378Gitea 1.12.x and 1.13.x before 1.13.4 allows XSS via certain issue data in some situations.

View vendor →Open in catalog with product filter →