A timing condition in Harbor 2.6.x and below, Harbor 2.7.2 and below, Harbor 2.8.2 and below, and Harbor 1.10.17 and below allows an attacker with network access to
create jobs/stop job tasks and retrieve job task information.
References
Link | Resource |
---|---|
https://github.com/goharbor/harbor/security/advisories/GHSA-mq6f-5xh5-hgcf | Exploit Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: vmware
Published: 2023-11-09T00:36:25.369Z
Updated: 2023-11-09T00:36:25.369Z
Reserved: 2022-11-01T15:41:50.396Z
Link: CVE-2023-20902
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-09T01:15:07.660
Modified: 2023-11-16T16:43:24.420
Link: CVE-2023-20902
JSON object: View
Redhat Information
No data.
CWE