pkg:Bitnami/harbor
15 total CVEsHIGH4MEDIUM10LOW1
✅ Check your installed version
All known vulnerabilities
- HIGH7.7CVE-2022-31666Harbor fails to validate user permissions while Viewing, updating and deleting Webhook policies>= 2.0.0, < 2.4.3, >= 2.5.0, < 2.5.2
- HIGH7.7CVE-2022-31670Harbor fails to validate the user permissions when updating tag retention policies>= 1.0.0, < 1.10.13, >= 2.0.0, < 2.4.3, >= 2.5.0, < 2.5.2
- HIGH7.5CVE-2022-46463An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication.>= 1.1.0, < 2.5.4
- HIGH7.4CVE-2022-31668Harbor fails to validate the user permissions when updating p2p preheat policies in github.com/goharbor/harbor>= 2.0.0, < 2.4.3, >= 2.5.0, < 2.5.2
- >= 2.0.0, < 2.4.3, >= 2.5.0, < 2.5.2
- MEDIUM6.4CVE-2022-31669Harbor fails to validate the user permissions when updating tag immutability policies>= 2.0.0, < 2.4.3, >= 2.5.0, < 2.5.2
- from 0, < 1.10.17, >= 2.6.0, < 2.6.5, >= 2.7.0, < 2.7.3, >= 2.8.0, < 2.8.3
- MEDIUM5.5CVE-2024-22278Harbor fails to validate the user permissions when updating project configurations in github.com/goharbor/harborfrom 0, < 2.11.0
- >= 2.0.0, < 2.0.5, >= 2.1.0, < 2.1.2
- MEDIUM5.0CVE-2022-31671Harbor fails to validate the user permissions when reading job execution logs through the P2P preheat execution logs>= 2.0.0, < 2.4.3, >= 2.5.0, < 2.5.2
- MEDIUM4.4CVE-2020-13788Harbor is vulnerable to a limited Server-Side Request Forgery (SSRF) (CVE-2020-13788) in github.com/goharbor/harborfrom 0, < 2.0.1
- >= 2.8.0, < 2.10.1
- >= 1.9.0, < 2.0.3
- from 0, < 2.11.3
- >= 2.8.1, < 2.8.6, >= 2.9.0, < 2.9.4, >= 2.10.0, < 2.10.2