Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5
CVE-2025-7777
- EPSS 0.04%
- Published 20.08.2025 11:38:59
- Last modified 20.08.2025 16:15:43
The mirror-registry doesn't properly sanitize the host header HTTP header in HTTP request received, allowing an attacker to perform malicious redirects to attacker-controlled domains or phishing campaigns.
8.8
CVE-2024-3622
- EPSS 0.12%
- Published 25.04.2024 18:15:09
- Last modified 30.07.2025 14:41:38
A flaw was found when using mirror-registry to install Quay. It uses a default secret, which is stored in plain-text format in one of the configuration template files. This issue may lead to all instances of Quay deployed using mirror-registry to hav...
6.5
CVE-2024-3623
- EPSS 0.09%
- Published 25.04.2024 18:15:09
- Last modified 30.07.2025 14:34:41
A flaw was found when using mirror-registry to install Quay. It uses a default database secret key, which is stored in plain-text format in one of the configuration template files. This issue may lead to all instances of Quay deployed using mirror-re...
1