CLEANSTART-2026-EE52954 Security fixes for CVE-2021-3538, CVE-2025-22871, CVE-2025-29923, CVE-2025-4673, CVE-2025-47907, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-f6x5-jh6r-wrfv, ghsa-hcg3-q754-cr77, ghsa-j5w8-q4qc-rx2x, ghsa-mh63-6h87-95cp, ghsa-qxp5-gwg8-xv66, ghsa-vvgc-356p-c3xw applied in versions: 3.0.0.1-r2, 3.0.0.1-r3, 3.0.0.1-r4

Multiple security vulnerabilities affect the harbor-registry package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-VZ76006 Security fixes for CVE-2021-3538, CVE-2025-29923, CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-68121, CVE-2026-24051, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186 applied in versions: 3.0.0.1-r3, 3.0.0.1-r4, 3.0.0.1-r5

Multiple security vulnerabilities affect the harbor-registry-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-PC16040 Within HostnameError

Multiple security vulnerabilities affect the harbor-registry-fips package. Within HostnameError. See references for individual vulnerability details...

CLEANSTART-2026-QK01721 go-redis is the official Redis client library for the Go programming language

Multiple security vulnerabilities affect the harbor-registry-fips package. go-redis is the official Redis client library for the Go programming language. See references for individual vulnerability details...

CLEANSTART-2026-PO40318 go-redis is the official Redis client library for the Go programming language

Multiple security vulnerabilities affect the harbor-registry-fips package. go-redis is the official Redis client library for the Go programming language. See references for individual vulnerability details...

CLEANSTART-2026-RY09679 go-redis is the official Redis client library for the Go programming language

Security vulnerability affects the harbor-registry-fips package. go-redis is the official Redis client library for the Go programming language...

CLEANSTART-2026-PG91940 net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines

Multiple security vulnerabilities affect the harbor-registry package. The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. See references for individual vulnerability details...

CLEANSTART-2026-ZO91195 go-redis is the official Redis client library for the Go programming language

Multiple security vulnerabilities affect the harbor-registry-fips package. go-redis is the official Redis client library for the Go programming language. See references for individual vulnerability details...

GHSA-7C64-F9JR-V9H2 vulnerabilities

Vulnerabilities for packages: newrelic-k8s-metadata-injection, cosign-fips, kubernetes-csi-external-snapshotter-fips, promxy, cloudbeat, opa-fips-envoy, scorecard, mockery, kind, blobfuse2-fips, policy-controller, prometheus-pushgateway-fips, helm-fips, spicedb-operator-fips, src-fingerprint,...

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: newrelic-k8s-metadata-injection, cosign-fips, kubernetes-csi-external-snapshotter-fips, promxy, cloudbeat, opa-fips-envoy, scorecard, mockery, kind, blobfuse2-fips, policy-controller, prometheus-pushgateway-fips, helm-fips, spicedb-operator-fips, src-fingerprint,...

EUVD-2023-12666

Malicious code in bioql PyPI...

EUVD-2024-54314

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-9773

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GitLab EE affecting all versions starting from 14.9 before 17.8.6, all versions starting from 17.9 before 17.8.3, all versions starti...

Linux Distros Unpatched Vulnerability : CVE-2023-0632

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions...

Linux Distros Unpatched Vulnerability : CVE-2024-8177

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GitLab CE/EE affecting all versions starting from 15.6 prior to 17.4.5, starting from 17.5 prior to 17.5.3, starting from 17.6 prior ...

Harbor 安全漏洞

Harbor is an open source registry from Harbor Open Source. Artifacts are protected through policies and role-based access control, ensuring that images are scanned and are not vulnerable, and signing images as trusted. A security vulnerability exists in Harbor versions prior to 2.13.1 and prior t...

CVE-2024-8177

An issue was discovered in GitLab CE/EE affecting all versions starting from 15.6 prior to 17.4.5, starting from 17.5 prior to 17.5.3, starting from 17.6 prior to 17.6.1 which could cause Denial of Service via integrating a malicious harbor registry...

The vulnerability of the Harbor Registry module of the Git-based software platform for collaborative code development on GitLab allows a hacker to execute arbitrary code.

The vulnerability of the Harbor Registry module of the Git-based software platform for collaborative code development on GitLab is related to the lack of measures taken to clean up data at the management level. Exploiting this vulnerability allows an attacker to execute arbitrary code...

CVE-2024-9773

An issue was discovered in GitLab EE affecting all versions starting from 14.9 before 17.8.6, all versions starting from 17.9 before 17.8.3, all versions starting from 17.10 before 17.10.1. An input validation issue in the Harbor registry integration could have allowed a maintainer to add malicio...

BIT-GITLAB-2024-9773 Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab

An issue was discovered in GitLab EE affecting all versions starting from 14.9 before 17.8.6, all versions starting from 17.9 before 17.8.3, all versions starting from 17.10 before 17.10.1. An input validation issue in the Harbor registry integration could have allowed a maintainer to add malicio...