Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/24 9:17 p.m.13 views

CVE-2025-48374

zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. Prior to version 2.1.3 corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f, when using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout...

6.9CVSS6.9AI score0.00152EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/22 8:43 p.m.6 views

CVE-2025-48374 zot logs secrets

zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. Prior to version 2.1.3 corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f, when using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout...

6.9CVSS6.5AI score0.00152EPSS
Exploits0References2
OSV
OSV
added 2025/05/22 8:43 p.m.7 views

CVE-2025-48374 zot logs secrets

zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. Prior to version 2.1.3 corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f, when using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout...

6.9CVSS6.6AI score0.00152EPSS
Exploits0References4
OSV
OSV
added 2025/05/22 8:33 p.m.5 views

GHSA-C37V-3C8W-CRQ8 zot logs secrets

Summary When using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout logs for an example at container startup. Details Container Image 15.04.2025: ghcr.io/project-zot/zot-linux-amd64:latest Here is an example how the configuration can look which causes the abov...

6.9CVSS7.4AI score0.00152EPSS
Exploits0References5
Rows per page
Query Builder