Threat actors have begun probing a critical authentication bypass in official Gitea Docker images, tracked as CVE-2026-20896, shortly after public disclosure and patch release. The flaw stems from a default configuration that sets REVERSE_PROXY_TRUSTED_PROXIES = *, causing Gitea to trust the X-WEBAUTH-USER header from any source IP when reverse-proxy authentication is enabled. An attacker that can directly reach the Gitea HTTP service can impersonate any existing user without a password or session cookie, including administrators, and may also create accounts if auto-registration is enabled.
The issue affects Gitea Docker image deployments through 1.26.2 and was fixed in 1.26.3 and later by removing wildcard proxy trust and making reverse-proxy authentication opt-in. Researchers reported the first observed in-the-wild activity 13 days after disclosure, with reconnaissance tied to ProtonVPN-associated infrastructure, while public proof-of-concept details have increased the risk of broader exploitation. With roughly 6,200 internet-facing Gitea instances estimated to be exposed, organizations are being urged to upgrade immediately and review systems for unauthorized access.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
6 events from the most recent confirmed update back to the earliest known activity.
Sysdig reported the first in-the-wild exploitation attempt against CVE-2026-20896 13 days after public disclosure. The observed activity appeared limited to initial reconnaissance from a ProtonVPN-associated IP address.
Gitea fixed CVE-2026-20896 by removing wildcard trusted proxies and making reverse-proxy authentication opt-in in updated Docker image releases. The flaw affected official Docker image deployments through version 1.26.2.
Lupovis observed coordinated scanning and exploitation activity targeting CVE-2026-8451 within 24 hours of its disclosure and proof-of-concept release. Researchers warned the flaw could support initial access, privilege escalation, lateral movement, and data exfiltration.
Citrix publicly disclosed and patched CVE-2026-8451, a NetScaler memory overread vulnerability affecting ADC and Gateway devices configured as a SAML identity provider. On the same day, WatchTowr published technical details and a proof of concept for the flaw.
Gitea disclosed CVE-2026-20896, an authentication bypass in official Docker images caused by trusting the X-WEBAUTH-USER header from any source IP when reverse-proxy authentication is enabled. The advisory identified verified affected versions including Docker image 1.26.2 and warned that attackers could impersonate arbitrary users, including administrators.
A remote code execution vulnerability in crawl4ai's Docker API server was fixed in version 0.9.0 by forbidding dangerous request-supplied Chromium launch arguments in untrusted request bodies. The issue affected the /crawl, /crawl/stream, and /crawl/job endpoints and was especially severe because the Docker API was unauthenticated by default.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
8 references tracked. Mallory keeps watching after this page renders.
securityaffairs.com
Open sourcesecurityweek.com
Open sourcethreataft.com
Open sourcethehackernews.com
Open sourcedarkreading.com
Open sourcegithub.com
Open sourcegithub.com
Open sourcegithub.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.