Gitea Vulnerability Exposes 30,000 Deployments to Potential Attacks
A significant security vulnerability has been identified in Gitea, an open-source, self-hosted Git service, which could have allowed unauthorized attackers to access private container images from over 30,000 deployments. The flaw, tracked as CVE-2026-27771, is an access control issue affecting Gitea’s built-in container registry. This vulnerability, which also impacts Forgejo and potentially other Gitea-derived forks, allowed unauthenticated users to pull private images as if they were public. The issue persisted in Gitea’s code for approximately four years before being patched in version 1.26.2. According to AI pentesting firm NoScope, a Shodan search revealed over 34,000 internet-facing Gitea instances, with about 93% likely vulnerable. The flaw could expose sensitive information such as source code and production infrastructure details, posing a significant risk to affected organizations. 
