Lucene search
K

5 matches found

NVD
NVD
added 2025/05/22 9:15 p.m.17 views

CVE-2025-48374

zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. Prior to version 2.1.3 corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f, when using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout...

6.9CVSS0.00152EPSS
Exploits0References2
OSV
OSV
added 2025/05/22 8:43 p.m.9 views

CVE-2025-48374 zot logs secrets

zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. Prior to version 2.1.3 corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f, when using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout...

6.9CVSS6.6AI score0.00152EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/05/22 8:43 p.m.6 views

CVE-2025-48374 zot logs secrets

zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. Prior to version 2.1.3 corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f, when using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout...

6.9CVSS6.5AI score0.00152EPSS
Exploits0References2
CVE
CVE
added 2025/05/22 8:43 p.m.62 views

CVE-2025-48374

Summary: CVE-2025-48374 affects zot, a container image/artifact registry. When using Keycloak as an OpenID Connect provider, the clientsecret is echoed to container stdout logs during startup in versions prior to 2.1.3 (pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f). The issue stems from logg...

6.9CVSS6.5AI score0.00152EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/22 8:43 p.m.30 views

CVE-2025-48374 zot logs secrets

zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. Prior to version 2.1.3 corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f, when using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout...

6.9CVSS0.00152EPSS
Exploits0References2
Rows per page
Query Builder