CVE-2026-20800

CVE-2026-20800

Name

CVE-2026-20800

Description

Gitea's notification API does not re-validate repository access permissions when returning notification details. After a user's access to a private repository is revoked, they may still view issue and pull request titles through previously received notifications.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
release-notes	https://blog.gitea.com/release-of-1.25.4/
patch	https://github.com/go-gitea/gitea/pull/36339
release-notes	https://github.com/go-gitea/gitea/releases/tag/v1.25.4
vendor-advisory	https://github.com/go-gitea/gitea/security/advisories/GHSA-g54m-9f6g-wj7q

Type

URI

release-notes

https://blog.gitea.com/release-of-1.25.4/

patch

https://github.com/go-gitea/gitea/pull/36339

release-notes

https://github.com/go-gitea/gitea/releases/tag/v1.25.4

vendor-advisory

https://github.com/go-gitea/gitea/security/advisories/GHSA-g54m-9f6g-wj7q

CPE URI	Source package	Min version	Max version
	gitea-open-source-git-server	>= 0	<= 1.25.3
`cpe:2.3:a:gitea:gitea::::::-::*`	gitea	>= None	< 1.25.4

CPE URI

Source package

Min version

Max version

gitea-open-source-git-server

>= 0

<= 1.25.3

cpe:2.3:a:gitea:gitea:*:*:*:*:*:-:*:*

gitea

>= None

< 1.25.4

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
gitea	edge-community	1.25.3-r2	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.25.3-r1	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.25.3-r0	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.24.6-r2	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.24.6-r1	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.24.6-r0	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.24.5-r0	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.24.1-r3	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.24.1-r2	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.24.1-r1	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.24.1-r0	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.24.0-r0	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.23.8-r0	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.23.7-r1	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.23.7-r0	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.23.6-r1	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.23.6-r0	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.23.5-r1	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.23.5-r0	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	edge-community	1.23.1-r2	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.23.1-r1	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.23.1-r0	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.22.6-r0	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.22.5-r0	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.22.4-r0	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.21.3-r0	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.17.3-r0	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.16.7-r0	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.16.3-r0	None	possibly vulnerable
gitea	edge-community	1.14.6-r0	6543 <6543@obermui.de>	possibly vulnerable
gitea	edge-community	1.13.7-r0	None	possibly vulnerable
gitea	edge-community	1.13.7	None	possibly vulnerable
gitea	edge-community	1.13.6-r0	None	possibly vulnerable
gitea	edge-community	1.13.6	None	possibly vulnerable
gitea	edge-community	1.13.4-r0	None	possibly vulnerable
gitea	edge-community	1.13.2-r0	None	possibly vulnerable
gitea	edge-community	1.11.2-r0	None	possibly vulnerable
gitea	edge-community	1.5.2-r0	None	possibly vulnerable
gitea	edge-community	1.5.1-r0	None	possibly vulnerable
gitea	3.23-community	1.24.6-r4	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	3.23-community	1.24.6-r3	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable
gitea	3.23-community	1.24.6-r2	techknowlogick <techknowlogick@gitea.com>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages