CVE-2026-20897 Blast Radius

CRITICAL • CVSS 9.1Gitea does not properly validate repository ownership when deleting Git LFS locks. A user with write access to one repository may be able to delete LF…

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-20897.

Start Free Scan →← Back to CVE-2026-20897