Description

Harbor is an open source trusted cloud native registry project that stores, signs, and scans content.

It's not recommended to have Harbor registry publicly accessible.

Remediation

It's recommended to restrict access to this service on production systems

References

CVE-2022-46463

Related Vulnerabilities

Possible username or password disclosure

WordPress Plugin WP Custom Pages 'url' Parameter Local File Disclosure (0.5.0.1)

Joomla! Core 1.6.x Information Disclosure (1.6.0 - 1.6.6)

Tomcat status page

XML external entity injection via File Upload

Severity

High

Classification

CVE-2022-46463 CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure Configuration