-
Byte Open Security
(ByteOS Network)
Log In
Sign Up
CVE Vulnerability Details :
CVE-2026-58424
PUBLISHED
More Info
Official Page
Assigner
-
Gitea
Assigner Org ID
-
88ee5874-cf24-4952-aea0-31affedb7ff2
View Known Exploited Vulnerability (KEV) details
Published At
-
03 Jul, 2026 | 20:54
Updated At
-
03 Jul, 2026 | 20:54
Rejected At
-
▼
CVE Numbering Authority (CNA)
Permanent Fork PR Workflow Approval Gate Bypass
Permanent Fork PR Workflow Approval Gate Bypass
Affected Products
Vendor
Gitea
Product
Gitea Open Source Git Server
Default Status
unaffected
Versions
Affected
From
0
through
1.26.2
(semver)
Problem Types
Type
CWE ID
Description
CWE
CWE-285
CWE-285
CWE
CWE-732
CWE-732
CWE
CWE-863
CWE-863
Type:
CWE
CWE ID:
CWE-285
Description:
CWE-285
Type:
CWE
CWE ID:
CWE-732
Description:
CWE-732
Type:
CWE
CWE ID:
CWE-863
Description:
CWE-863
Metrics
Version
Base score
Base severity
Vector
3.1
8.9
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:H/A:H
Version:
3.1
Base score:
8.9
Base severity:
HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:H/A:H
Metrics Other Info
Impacts
CAPEC ID
Description
Solutions
Configurations
Workarounds
Exploits
Credits
reporter
prakhar0x01
Timeline
Event
Date
Replaced By
Rejected Reason
References
Hyperlink
Resource
https://github.com/go-gitea/gitea/security/advisories/GHSA-777r-4v59-6486
vendor-advisory
https://github.com/go-gitea/gitea/pull/38010
patch
https://github.com/go-gitea/gitea/releases/tag/v1.26.4
release-notes
https://blog.gitea.com/release-of-1.26.3-and-1.26.4/
release-notes
Hyperlink:
https://github.com/go-gitea/gitea/security/advisories/GHSA-777r-4v59-6486
Resource:
vendor-advisory
Hyperlink:
https://github.com/go-gitea/gitea/pull/38010
Resource:
patch
Hyperlink:
https://github.com/go-gitea/gitea/releases/tag/v1.26.4
Resource:
release-notes
Hyperlink:
https://blog.gitea.com/release-of-1.26.3-and-1.26.4/
Resource:
release-notes
Details not found