Privileged Users Can Leak Task IDs via SQL Injection in Harbor
CVE-2024-22261
5.5MEDIUM
What is CVE-2024-22261?
SQL-Injection in Harbor allows priviledge users to leak the task IDs
Affected Version(s)
Harbor 2.8.1 <= 2.8.5
Harbor 2.9.0 <= 2.9.3
Harbor 2.10.0 <= 2.10.1
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published