A flaw was found in Red Hat Quay's container image upload process. An authenticated user with push access to any repository on the registry can interfere with image uploads in progress by other users, including those in repositories they do not have access to. This could allow the attacker to read, modify, or cancel another user's in-progress image upload.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:LRed Hat Mirror Registry For Red Hat Openshift
APPRedhat2.0Red Hat Quay
APPRedhat3.0.0
Powiązane podatności
A directory traversal vulnerability was found in the ClairCore engine of Clair. An attacker can exploit this b...
A flaw was found in Red Hat Quay, where it has a persistent Cross-site Scripting (XSS) vulnerability when disp...
A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. The upload process sto...
A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using in...
A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to ...