PT-2025-53433 · Gitea+1 · Gitea+1

D3Struct1V3-Create

+1

·

Published

2025-12-25

·

Updated

2026-01-29

·

CVE-2025-68938

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Name of the Vulnerable Software and Affected Versions Gitea versions prior to 1.25.2
Description The software does not properly manage permissions when deleting releases. This can allow unauthorized deletion of releases.
Recommendations Update to version 1.25.2 or later.

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-863

Related Identifiers

BDU:2026-03395
BIT-GITEA-2025-68938
CVE-2025-68938
GHSA-CM54-PFMC-XRWX
GO-2025-4258
SUSE-SU-2026:0037-1

Affected Products

Gitea
Red Os