CVE-2026-28699
Gitea versions up to and including 1.26.1 allow OAuth2 access token scope enforcement to be bypassed through HTTP Basic authentication.
CVSS
8.1
Alto
EPSS
0.6%
p43
KEV
—
Exploit Today
13
0-100
Publicado: 3 jul 2026 · Última mod.: 6 jul 2026 · CWE-284 · CWE-863
0.6%EPSS · 30 días0.6%
2026-07-042026-07-17
Gitea versions up to and including 1.26.1 allow OAuth2 access token scope enforcement to be bypassed through HTTP Basic authentication.
- blog.gitea.comhttps://blog.gitea.com/release-of-1.26.2/
- github.comhttps://github.com/go-gitea/gitea/pull/37503
- github.comhttps://github.com/go-gitea/gitea/releases/tag/v1.26.2
- github.comhttps://github.com/go-gitea/gitea/security/advisories/GHSA-9r5x-wg6m-x2rc
- github.comhttps://github.com/go-gitea/gitea/security/advisories/GHSA-9r5x-wg6m-x2rc
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2026-350298.8 ALT97.8%
——29LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.83.0, the /config/update endpoint does not enforce admin role authorization. A user who is already authenticated into the platform can then use this endpoint to modify proxy configuration and environment variables, register custom pass-through endpoint handlers pointing to attacker-controlled Python code, achieving remote code execution, read arbitrary server files by setting UI_LOGO_PATH and fetching via /get_image, and take over other privileged accounts by overwriting UI_USERNAME and UI_PASSWORD environment variables. Fixed in v1.83.0.3dCVE-2026-479967.6 ALT96.9%
——29Adobe Commerce is affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. A high-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploitation of this issue does not require user interaction. Scope is changed.3dCVE-2025-324622.8 BAJ86.9%
——26Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.4dCVE-2026-503517.8 ALT84.8%
——25Improper access control in Windows Audio Compression Manager (ACM) allows an authorized attacker to elevate privileges locally.2dCVE-2026-504237.8 ALT82.8%
——25Improper access control in Windows Kernel allows an authorized attacker to elevate privileges locally.3dCVE-2026-498057.0 ALT81.6%
——24Improper access control in Windows Win32K allows an authorized attacker to elevate privileges locally.2d