Harbor

Harbor Unauthorized Access Vulnerability (CVE-2022-46463) Alert

January 16, 2023

Overview Recently, NSFOCUS CERT detected that the technical details of the Harbor Unauthorized Access Vulnerability (CVE-2022-46463) were publicly disclosed on the Internet. Due to an access control flaw in Harbor, an attacker without authentication can access all information of public and private image repositories through this vulnerability and perform image pull. Currently, the technical details […]

Harbor Multiple Vulnerabilities Threat Alert

December 17, 2019

Overview

Today, VMware released five vulnerabilities for Harbor Container Registry, including two officially classified as critical vulnerabilities (CVE-2019-19025, CVE-2019-19023), and two high-risk vulnerabilities (CVE-2019-19029, CVE- 2019-19026), and a medium-risk vulnerability (CVE-2019-3990). (more…)

Harbor Remote Privilege Escalation Vulnerability (CVE-2019-16097) Threat Alert

October 16, 2019

Overview

Harbor is an open-source project from VMware and an enterprise-class registry server that stores and distributes Docker container images. It adds some functionalities required by enterprises such as security, identity, and management. (more…)

Search

Subscribe to the NSFOCUS Blog