A vulnerability in Gitea's built-in container registry (CVE-2026-27771) allows unauthenticated attackers to pull private container images, potentially exposing source code, secrets, and production infrastructure details, affecting over 30,000 deployments.
Gitea +2
vulnerability
container registry
access control
cloud
git
2r
1t
1c
2i
updated