← Back

Harbor Container Registry

harbor_container_registry

Vendor: Vmware • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-16919
2Linuxfoundation
Vmware
3Cloud Foundation
HarborHarbor Container Registry
Nov 21, 2024
Oct 18, 2019
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Harbor API has a Broken Access Control vulnerability. The vulnerability allows project administrators to use the Harbor API to create a robot account with unauthorized push and/or pull access permissions to a project the...Show more
Harbor API has a Broken Access Control vulnerability. The vulnerability allows project administrators to use the Harbor API to create a robot account with unauthorized push and/or pull access permissions to a project they don't have access or control for. The Harbor API did not enforce the proper project permissions and project scope on the API request to create a new robot account.Show less