Lucene search
+L

587 matches found

OSV
OSV
added 2026/01/26 2:39 p.m.7 views

BIT-HARBOR-2022-31666 Harbor fails to validate user permissions while Viewing, updating and deleting Webhook policies

Harbor fails to validate user permissions while deleting Webhook policies, allowing malicious users to view, update and delete Webhook policies of other users. The attacker could modify Webhook policies configured in other projects...

7.7CVSS5.9AI score0.00492EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/07 9:32 a.m.8 views

CVE-2019-16097

core/api/user.go in Harbor 1.7.0 through 1.8.2 allows non-admin users to create admin accounts via the POST /api/users API, when Harbor is setup with DB as authentication backend and allow user to do self-registration. Fixed version: v1.7.6 v1.8.3. v.1.9.0. Workaround without applying the fix:...

6.5CVSS6.9AI score0.23284EPSS
Exploits5References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:31 a.m.9 views

CVE-2019-16919

Harbor API has a Broken Access Control vulnerability. The vulnerability allows project administrators to use the Harbor API to create a robot account with unauthorized push and/or pull access permissions to a project they don't have access or control for. The Harbor API did not enforce the proper...

7.5CVSS6.7AI score0.01711EPSS
Exploits0References1
Wolfi
Wolfi
added 2026/01/07 1:51 a.m.3 views

GHSA-9J3M-FR7Q-JXFW vulnerabilities

Vulnerabilities for packages: harbor...

7AI score
Exploits0
Wolfi
Wolfi
added 2026/01/07 1:51 a.m.4 views

CVE-2024-55885 vulnerabilities

Vulnerabilities for packages: harbor...

7.5CVSS7AI score0.00342EPSS
Exploits0
Chainguard
Chainguard
added 2026/01/07 1:29 a.m.4 views

GHSA-9J3M-FR7Q-JXFW vulnerabilities

Vulnerabilities for packages: harbor, harbor-fips...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2026/01/07 1:29 a.m.8 views

CVE-2024-55885 vulnerabilities

Vulnerabilities for packages: harbor, harbor-fips...

7.5CVSS7.2AI score0.00342EPSS
Exploits0
Chainguard
Chainguard
added 2025/12/05 1:28 a.m.10 views

GHSA-7C64-F9JR-V9H2 vulnerabilities

Vulnerabilities for packages: prometheus, kube-bench, docker-credential-acr-env-fips, gotestsum, newrelic-infrastructure-agent, longhorn-backing-image-manager, petname, chart-testing-fips, flux-helm-controller-fips, sftpgo-plugin-geoipfilter, k6-fips, trillian-fips, coredns-fips, opa-envoy,...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2025/12/05 1:28 a.m.16 views

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: prometheus, kube-bench, docker-credential-acr-env-fips, gotestsum, newrelic-infrastructure-agent, longhorn-backing-image-manager, petname, chart-testing-fips, flux-helm-controller-fips, sftpgo-plugin-geoipfilter, k6-fips, trillian-fips, coredns-fips, opa-envoy,...

7.5CVSS7.4AI score0.00459EPSS
Exploits2
Wolfi
Wolfi
added 2025/12/04 7:47 p.m.14 views

GHSA-7C64-F9JR-V9H2 vulnerabilities

Vulnerabilities for packages: kbld, ingress-nginx-controller, kubernetes-dashboard-metrics-scraper, grpcurl, goreleaser, knative-operator, karma, nvidia-container-toolkit, go-jsonnet, kind, portieris, syft, nri-kafka, gitsign, rancher-helm, sftpgo-plugin-kms, splunk-otel-collector, nats-server,...

5.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.5 views

TencentOS Server 4: harbor (TSSA-2025:0614)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0614 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

4.1CVSS5.6AI score0.00303EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-1125

Malware in sbrugna...

7.2CVSS6.9AI score0.02104EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-1178

Malware in sbrugna...

8.8CVSS8.5AI score0.01023EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-13597

Malware in sbrugna...

4.3CVSS4.7AI score0.01037EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2021-1165

Malware in sbrugna...

4.3CVSS4.6AI score0.01266EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-7413

Malware in sbrugna...

7.5CVSS7.5AI score0.01711EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-1161

Malware in sbrugna...

8.8CVSS8.5AI score0.01618EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2017-8854

Malware in sbrugna...

8.6CVSS8.7AI score0.01389EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-1209

Malware in sbrugna...

4.9CVSS4.9AI score0.01424EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2025-22653

Malicious code in bioql PyPI...

4.9CVSS6.3AI score0.00602EPSS
Exploits0References6
Rows per page
Query Builder