Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
•added 2025/05/23 1:7 a.m.•7 views

CVE-2022-46463

An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature."...

7.5CVSS6.7AI score0.06237EPSS
Exploits2References1
OSV
OSV
•added 2024/05/24 11:8 a.m.•5 views

OESA-2024-1644 skopeo security update

A command line utility that performs various operations on container images and image repositories Security Fixes: Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used lar...

4.3CVSS7AI score0.01956EPSS
Exploits0References2
OSV
OSV
•added 2024/05/24 11:8 a.m.•4 views

OESA-2024-1643 skopeo security update

A command line utility that performs various operations on container images and image repositories Security Fixes: The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1...

6.5CVSS7.1AI score0.0125EPSS
Exploits0References2
OSV
OSV
•added 2023/09/22 11:5 a.m.•5 views

OESA-2023-1665 skopeo security update

A command line utility that performs various operations on container images and image repositories Security Fixes: Calling any of the Parse functions on Go source code which contains //line directives with very large line numbers can cause an infinite loop due to integer overflow.CVE-2023-24537...

7.5CVSS7.3AI score0.01412EPSS
Exploits0References2
OSV
OSV
•added 2023/09/22 11:5 a.m.•6 views

OESA-2023-1663 skopeo security update

A command line utility that performs various operations on container images and image repositories Security Fixes: Calling any of the Parse functions on Go source code which contains //line directives with very large line numbers can cause an infinite loop due to integer overflow.CVE-2023-24537...

7.5CVSS7.3AI score0.01412EPSS
Exploits0References2
Nuclei
Nuclei
•added 2023/08/16 8:46 a.m.•679 views

Harbor <=2.5.3 - Unauthorized Access

An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication id: CVE-2022-46463 info: name: Harbor =2.5.3 - Unauthorized Access author: Arm!tage severity: high description: | An access control issue in Harbor v1.X.X to...

7.5CVSS7.6AI score0.06237EPSS
Exploits2References5
Prion
Prion
•added 2023/01/13 12:15 a.m.•47 views

Design/Logic Flaw

DISPUTED An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature."...

5CVSS7.4AI score0.06237EPSS
Exploits2References3Affected Software1
CVE
CVE
•added 2023/01/12 12:0 a.m.•386 views

CVE-2022-46463

CVE-2022-46463 describes an access-control issue in Harbor where Harbor v1.X.X through v2.5.3 allows access to both public and private image repositories without authentication. The vulnerability is described consistently across NVD/OSV/Nuclei sources as an unauthorized access flaw (CWE-306) with...

7.5CVSS7.4AI score0.06237EPSS
Exploits2References3Affected Software1
Positive Technologies
Positive Technologies
•added 2023/01/12 12:0 a.m.•5 views

PT-2023-14936

Name of the Vulnerable Software and Affected Versions Harbor versions 1.X.X through 2.5.3 Description An access control issue allows attackers to access public and private image repositories without authentication. The vendor states this behavior is documented as a feature. There is no informatio...

7.5CVSS7.4AI score0.06237EPSS
Exploits2References14
OSV
OSV
•added 2023/01/12 12:0 a.m.•10 views

CVE-2022-46463

An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature."...

7.5CVSS6.6AI score0.06237EPSS
Exploits2References5
Vulnrichment
Vulnrichment
•added 2023/01/12 12:0 a.m.•9 views

CVE-2022-46463

An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature."...

7.1AI score0.06237EPSS
Exploits2References3
Rows per page
Query Builder