A vulnerability, which was classified as critical , was found in Gitea act_runner up to 0.262.0 . The impacted element is an unknown function of the component Docker Backend . The manipulation results in improper privilege management. This vulnerability is reported as CVE-2026-58053 . The attack can be launched remotely. Moreover, an exploit is present.