Harbor Security Vulnerabilities and Issues — Harbor CVE List

Lucene search

LinuxfoundationHarbor

3 matches found

CVE•added 2021/02/02 9:15 p.m.•1775 views

CVE-2020-29662

In Harbor 2.0 before 2.0.5 and 2.1.x before 2.1.2 the catalog’s registry API is exposed on an unauthenticated path.

5.3CVSS5.3AI score0.00387EPSS

CVE•added 2022/12/26 10:15 p.m.•92 views

CVE-2019-19030

Cloud Native Computing Foundation Harbor before 1.10.3 and 2.x before 2.0.1 allows resource enumeration because unauthenticated API calls reveal (via the HTTP status code) whether a resource exists.

5.3CVSS5.2AI score0.31611EPSS

CVE•added 2024/06/11 12:15 a.m.•91 views

CVE-2024-22261

SQL-Injection in Harbor allows priviledge users to leak the task IDs

5.5CVSS3.3AI score0.00272EPSS