CVE-2026-35172

Exploit

EPSS 0.29%
Veröffentlicht 06.04.2026 19:08:44
Zuletzt bearbeitet 27.04.2026 23:55:02
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Distribution has stale blob access resurrection via repo-scoped redis descriptor cache invalidation

Distribution is a toolkit to pack, ship, store, and deliver container content. Prior to 3.1.0, distribution can restore read access in repo a after an explicit delete when storage.cache.blobdescriptor: redis and storage.delete.enabled: true are both enabled. The delete path clears the shared digest descriptor but leaves stale repo-scoped membership behind, so a later Stat or Get from repo b repopulates the shared descriptor and makes the deleted blob readable from repo a again. This vulnerability is fixed in 3.1.0.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Distribution ≫ Distribution Version < 3.1.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.29%	0.201

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

https://github.com/distribution/distribution/security/advisories/GHSA-f2g3-hh2r-cwgc

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2026-35172

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-35172

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-35172

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-35172