CVE-2023-49946

critical

Description

In Forgejo before 1.20.5-1, certain endpoints do not check whether an object belongs to a repository for which permissions are being checked. This allows remote attackers to read private issues, read private pull requests, delete issues, and perform other unauthorized actions.

References

https://github.com/gogs/gogs/security

https://forgejo.org/2023-11-release-v1-20-5-1/

https://codeberg.org/forgejo/forgejo/src/branch/forgejo/RELEASE-NOTES.md

https://about.gitea.com/security

Details

Source: Mitre, NVD

Published: 2023-12-03

Updated: 2023-12-07

Risk Information

CVSS v2

Base Score: 9.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:N

Severity: High

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical