CVE-2024-22244 Harbor Open Redirect URL

🗓️ 10 Jun 2024 23:02:59Reported by vmwareType

CVE-2024-22244 Harbor Open Redirect URL. Open Redirect in Harbor may redirect user to a malicious site

Reporter	Title	Published	Views	Family All 12
CNNVD	Harbor Security Breach	10 Jun 202400:00	–	cnnvd
CVE	CVE-2024-22244	10 Jun 202423:02	–	cve
EUVD	EUVD-2024-1926	3 Oct 202520:07	–	euvd
Github Security Blog	Open Redirect URL in Harbor	2 Jun 202422:32	–	github
NVD	CVE-2024-22244	10 Jun 202423:15	–	nvd
OSV	BIT-HARBOR-2024-22244 Harbor Open Redirect URL	27 Feb 202507:09	–	osv
OSV	GHSA-5757-V49G-F6R7 Open Redirect URL in Harbor	2 Jun 202422:32	–	osv
OSV	GO-2024-2915 Open Redirect URL in Harbor in github.com/goharbor/harbor	14 Jun 202413:41	–	osv
Positive Technologies	PT-2024-19290 · Harbor · Harbor	2 Jun 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-22244	23 May 202508:47	–	redhatcve

[
  {
    "defaultStatus": "unaffected",
    "product": "Harbor",
    "repo": "https://github.com/goharbor/harbor",
    "vendor": "Harbor",
    "versions": [
      {
        "lessThanOrEqual": "2.8.4",
        "status": "affected",
        "version": "2.8",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "2.9.2",
        "status": "unknown",
        "version": "2.9",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "2.10.0",
        "status": "affected",
        "version": "2.10",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
github	www.github.com/goharbor/harbor/security/advisories/GHSA-5757-v49g-f6r7

10 Jun 2024 23:02Current

CVSS 3.14.3

EPSS0.00442

CWE-601