Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:33 a.m.12 views

CVE-2019-3990

A User Enumeration flaw exists in Harbor. The issue is present in the "/users" API endpoint. This endpoint is supposed to be restricted to administrators. This restriction is able to be bypassed and information can be obtained about registered users can be obtained via the "search" functionality...

4.3CVSS6.3AI score0.01037EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/08/19 12:0 a.m.28 views

VMware Harbor User Enumeration (CVE-2019-3990)

Binary data vmwareharborCVE-2019-3990direct.nbin...

4.3CVSS5.1AI score0.01037EPSS
Exploits0References2
NVD
NVD
added 2019/12/03 5:15 p.m.22 views

CVE-2019-3990

A User Enumeration flaw exists in Harbor. The issue is present in the "/users" API endpoint. This endpoint is supposed to be restricted to administrators. This restriction is able to be bypassed and information can be obtained about registered users can be obtained via the "search" functionality...

4.3CVSS4.2AI score0.01037EPSS
Exploits0References2
OSV
OSV
added 2019/12/03 5:15 p.m.17 views

CVE-2019-3990

A User Enumeration flaw exists in Harbor. The issue is present in the "/users" API endpoint. This endpoint is supposed to be restricted to administrators. This restriction is able to be bypassed and information can be obtained about registered users can be obtained via the "search" functionality...

4.3CVSS6.2AI score
Exploits0References2
CVE
CVE
added 2019/12/03 4:55 p.m.73 views

CVE-2019-3990

Affected product: Harbor (Open Source Harbor registry). Vulnerability: User enumeration via the "/users" API endpoint, which should be administrator-restricted, can be bypassed. Information about registered users can be obtained through the "+search" functionality. Root cause / nature (as describ...

4.3CVSS4.5AI score0.01037EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder