Lucene search
+L

587 matches found

OSV
OSV
added 2026/04/01 9:36 a.m.8 views

CLEANSTART-2026-MT27167 Security fixes for CVE-2021-3538, CVE-2025-29923, CVE-2025-53547, CVE-2025-55198, CVE-2025-55199, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27141, CVE-2026-27142, CVE-2026-33186, ghsa-557j-xg8c-q2mm, ghsa-9h84-qmv7-982p, ghsa-f6x5-jh6r-wrfv, ghsa-f9f8-9pmf-xv68, ghsa-j5w8-q4qc-rx2x applied in versions: 2.14.2-r0, 2.14.2-r1, 2.14.3-r0, 2.14.3-r1

Multiple security vulnerabilities affect the harbor package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.7AI score0.02307EPSS
Exploits3References30
OSV
OSV
added 2026/04/01 9:36 a.m.10 views

CLEANSTART-2026-OS42112 Security fixes for CVE-2021-3538, CVE-2025-15558, CVE-2025-29923, CVE-2025-53547, CVE-2025-55198, CVE-2025-55199, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27141, CVE-2026-27142, CVE-2026-33186, ghsa-557j-xg8c-q2mm, ghsa-9h84-qmv7-982p, ghsa-f6x5-jh6r-wrfv, ghsa-f9f8-9pmf-xv68, ghsa-j5w8-q4qc-rx2x, ghsa-p436-gjf2-799p applied in versions: 2.12.4-r0, 2.12.4-r1, 2.13.4-r0, 2.13.4-r1, 2.13.4-r2

Multiple security vulnerabilities affect the harbor package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.9AI score0.02307EPSS
Exploits3References33
OSV
OSV
added 2026/04/01 9:36 a.m.9 views

CLEANSTART-2026-EE52954 Security fixes for CVE-2021-3538, CVE-2025-22871, CVE-2025-29923, CVE-2025-4673, CVE-2025-47907, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-f6x5-jh6r-wrfv, ghsa-hcg3-q754-cr77, ghsa-j5w8-q4qc-rx2x, ghsa-mh63-6h87-95cp, ghsa-qxp5-gwg8-xv66, ghsa-vvgc-356p-c3xw applied in versions: 3.0.0.1-r2, 3.0.0.1-r3, 3.0.0.1-r4

Multiple security vulnerabilities affect the harbor-registry package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.8AI score0.02307EPSS
Exploits4References49
OSV
OSV
added 2026/04/01 9:36 a.m.18 views

CLEANSTART-2026-VZ76006 Security fixes for CVE-2021-3538, CVE-2025-29923, CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-68121, CVE-2026-24051, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186 applied in versions: 3.0.0.1-r3, 3.0.0.1-r4, 3.0.0.1-r5

Multiple security vulnerabilities affect the harbor-registry-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.9AI score0.02307EPSS
Exploits3References21
OSV
OSV
added 2026/04/01 9:36 a.m.8 views

CLEANSTART-2026-QY63788 Security fixes for CVE-2021-3538, CVE-2025-15558, CVE-2025-29923, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 2.14.2-r0, 2.14.2-r1, 2.14.3-r0, 2.14.3-r1

Multiple security vulnerabilities affect the harbor-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.8AI score0.02307EPSS
Exploits2References21
OSV
OSV
added 2026/04/01 9:36 a.m.6 views

CLEANSTART-2026-KW24478 Security fixes for CVE-2021-3538, CVE-2025-15558, CVE-2025-29923, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 2.14.2-r0, 2.14.2-r1, 2.15.0-r0, 2.15.0-r1

Multiple security vulnerabilities affect the harbor-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.9AI score0.02307EPSS
Exploits2References21
OSV
OSV
added 2026/04/01 9:35 a.m.7 views

CLEANSTART-2026-AP81168 Security fixes for CVE-2021-3538, CVE-2025-15558, CVE-2025-29923, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186 applied in versions: 2.13.4-r0, 2.13.5-r0, 2.13.5-r1

Multiple security vulnerabilities affect the harbor-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.9AI score0.02307EPSS
Exploits2References19
OSV
OSV
added 2026/04/01 9:20 a.m.4 views

CLEANSTART-2026-YM45607 Security fixes for CVE-2025-53547, CVE-2025-55198, CVE-2025-55199, CVE-2026-27141, CVE-2026-33186, ghsa-557j-xg8c-q2mm, ghsa-9h84-qmv7-982p, ghsa-f6x5-jh6r-wrfv, ghsa-f9f8-9pmf-xv68, ghsa-j5w8-q4qc-rx2x, ghsa-p77j-4mvh-x3m3 applied in versions: 2.14.2-r0, 2.14.2-r1, 2.14.2-r2

Multiple security vulnerabilities affect the harbor package. These issues are resolved in later releases. See references for individual vulnerability details...

9.1CVSS7.3AI score0.01557EPSS
Exploits2References17
OSV
OSV
added 2026/04/01 9:20 a.m.7 views

CLEANSTART-2026-GM18965 Security fixes for CVE-2025-15558, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 2.14.2-r0, 2.14.2-r1, 2.14.2-r2

Multiple security vulnerabilities affect the harbor-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

9.1CVSS7.1AI score0.01557EPSS
Exploits1References15
OSV
OSV
added 2026/04/01 9:20 a.m.8 views

CLEANSTART-2026-IC68874 Security fixes for CVE-2025-15558, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186 applied in versions: 2.13.4-r0, 2.13.4-r1

Multiple security vulnerabilities affect the harbor-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

9.1CVSS7.1AI score0.01557EPSS
Exploits1References13
Snyk
Snyk
added 2026/03/26 10:25 p.m.5 views

Insertion of Sensitive Information into Log File

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File in the process that writes configuration payloads to the audit log, where sensitive fields such as ldapsearchpassword and oidcclientsecret are not redacted. An attacker can obtain...

6.9CVSS5.9AI score
Exploits0References3
OSV
OSV
added 2026/03/26 10:25 p.m.20 views

GHSA-PRH4-VHFH-24MJ Harbor: LDAP password and OIDC secret are not redacted in the audit log

Impact Harbor write configuration payload to audit log when configuration change, the ldapsearchpassword and oidcclientsecret will be logged in the audit log without redacted Patches Harbor v2.15.0, v2.14.3, v2.13.5 Workarounds Disable audit log configure event in Harbor Web Console: Go to...

6.9CVSS5.8AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/03/26 10:25 p.m.43 views

Harbor: LDAP password and OIDC secret are not redacted in the audit log

Impact Harbor write configuration payload to audit log when configuration change, the ldapsearchpassword and oidcclientsecret will be logged in the audit log without redacted Patches Harbor v2.15.0, v2.14.3, v2.13.5 Workarounds Disable audit log configure event in Harbor Web Console: Go to...

5.8AI score
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/26 8:33 p.m.3 views

GO-2026-4845 Harbor allows the use of the default password for web UI login in github.com/goharbor/harbor

Harbor allows the use of the default password for web UI login in github.com/goharbor/harbor...

9.4CVSS5.9AI score0.00498EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/03/25 11:53 a.m.7 views

SUSE CVE-2026-4404

Use of hard coded credentials in GoHarbor Harbor version 2.15.0 and below, allows attackers to use the default password and gain access to the web UI...

9.4CVSS5.9AI score0.00498EPSS
Exploits0References4
CERT
CERT
added 2026/03/24 12:0 a.m.9 views

Hard coded credentials vulnerability in GoHarbor's Harbor

Overview GoHarbor's Harbor default admin password presents a security risk because it does not require change upon initial deployment. Description GoHarbor's Harbor is an open-source OCI-compliant container registry project that stores, signs, and manages container images. Harbor initializes with...

9.4CVSS6.5AI score0.00498EPSS
Exploits0References4
OSV
OSV
added 2026/03/23 3:30 p.m.3 views

GHSA-HJ7X-HMF2-HC2P Harbor allows the use of the default password for web UI login

Use of hard coded credentials in GoHarbor Harbor version 2.15.0 and below, allows attackers to use the default password and gain access to the web UI...

9.4CVSS5.8AI score0.00498EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/03/23 3:30 p.m.8 views

Harbor allows the use of the default password for web UI login

Use of hard coded credentials in GoHarbor Harbor version 2.15.0 and below, allows attackers to use the default password and gain access to the web UI...

9.4CVSS5.8AI score0.00498EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2026/03/23 3:16 p.m.7 views

CVE-2026-4404

Use of hard coded credentials in GoHarbor Harbor version 2.15.0 and below, allows attackers to use the default password and gain access to the web UI...

9.4CVSS0.00498EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/23 2:47 p.m.1 views

CVE-2026-4404 Use of hard coded credentials in GoHarbor Harbor

Use of hard coded credentials in GoHarbor Harbor version 2.15.0 and below, allows attackers to use the default password and gain access to the web UI...

5.8AI score0.00498EPSS
Exploits0References4
Rows per page
Query Builder