Harbor Unauthorized Access Vulnerability (CVE-2022-46463) Alert
January 16, 2023
Overview Recently, NSFOCUS CERT detected that the technical details of the Harbor Unauthorized Access Vulnerability (CVE-2022-46463) were publicly disclosed on the Internet. Due to an access control flaw in Harbor, an attacker without authentication can access all information of public and private image repositories through this vulnerability and perform image pull. Currently, the technical details […]
Harbor Multiple Vulnerabilities Threat Alert
December 17, 2019
Overview
Today, VMware released five vulnerabilities for Harbor Container Registry, including two officially classified as critical vulnerabilities (CVE-2019-19025, CVE-2019-19023), and two high-risk vulnerabilities (CVE-2019-19029, CVE- 2019-19026), and a medium-risk vulnerability (CVE-2019-3990). (more…)
Harbor Remote Privilege Escalation Vulnerability (CVE-2019-16097) Threat Alert
October 16, 2019
Overview
Harbor is an open-source project from VMware and an enterprise-class registry server that stores and distributes Docker container images. It adds some functionalities required by enterprises such as security, identity, and management. (more…)