RSS   Vulnerabilities for 'Harbor'   RSS

2021-02-02
 
CVE-2020-29662

CWE-319
 

 
In Harbor 2.0 before 2.0.5 and 2.1.x before 2.1.2 the catalog�??s registry API is exposed on an unauthenticated path.

 
2020-09-30
 
CVE-2020-13794

CWE-200
 

 
Harbor 1.9.* 1.10.* and 2.0.* allows Exposure of Sensitive Information to an Unauthorized Actor.

 
2020-07-15
 
CVE-2020-13788

CWE-918
 

 
Harbor prior to 2.0.1 allows SSRF with this limitation: an attacker with the ability to edit projects can scan ports of hosts accessible on the Harbor server's intranet.

 

 >>> Vendor: Linuxfoundation 32 Products
Foomatic-filters
XEN
DOJO
DEX
Fabric
Foomatic
Cups-filters
CEPH
RUNC
Harbor
Osquery
Open network operating system
ACRN
The update framework
Dojox
Argo continuous delivery
Free range routing
Jaeger
Nats-server
Containerd
Spinnaker
Indy-node
BESU
Argo-cd
Umoci
Backstage
Grpc swift
Cortex
Open container initiative distribution specification
Open container initiative image format specification
Auth backend
Kubeedge


Copyright 2024, cxsecurity.com

 

Back to Top