CVE-2023-49946 Information

Description

In Forgejo before 1.20.5-1 certain endpoints do not check whether an object belongs to a repository for which permissions are being checked. This allows remote attackers to read private issues read private pull requests delete issues and perform other unauthorized actions.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Reference

https://forgejo.org/2023-11-release-v1-20-5-1/ https://codeberg.org/forgejo/forgejo/src/branch/forgejo/RELEASE-NOTES.md https://about.gitea.com/security https://github.com/gogs/gogs/security

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

NONE

Base Severity

9.1