Harbor Unauthorized Access Vulnerability

Description

Harbor is an open source trusted cloud native registry project that stores, signs, and scans content.

It's not recommended to have Harbor registry publicly accessible.

Remediation

It's recommended to restrict access to this service on production systems

References

CVE-2022-46463

Related Vulnerabilities

SAP NetWeaver server info information disclosure BCB

Stack Trace Disclosure (CherryPy)

WordPress 6.3.x Multiple Vulnerabilities (6.3 - 6.3.1)

Drupal Core 5.x Information Disclosure (5.0 - 5.18)

WordPress Plugin Formidable Forms-Contact Form, Survey, Quiz, Calculator & Custom Form Builder Information Disclosure (2.0.07)

Severity

High

Classification

CVE-2022-46463 CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N