Redhat

Quay

37 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.14%
  • Veröffentlicht 08.06.2026 10:54:40
  • Zuletzt bearbeitet 08.06.2026 14:57:49

A flaw was found in Quay. The filedrop endpoint accepts any mime type without validation, allowing an authenticated user with repository write access to upload a malicious SVG file containing JavaScript. The file is stored and served inline through t...

  • EPSS 0.29%
  • Veröffentlicht 01.06.2026 09:16:16
  • Zuletzt bearbeitet 26.06.2026 00:16:50

A flaw was found in Clair. The fetcher component makes outbound HTTP requests to attacker-supplied URIs from manifest layer descriptors without IP or scheme filtering. When PSK authentication is not configured (opt-in, not enforced by default), an un...

  • EPSS 0.2%
  • Veröffentlicht 29.05.2026 09:30:30
  • Zuletzt bearbeitet 29.05.2026 14:06:47

A flaw was found in the Quay config-tool's GitLab OAuth validator. This vulnerability causes sensitive credentials, specifically client_id and client_secret, to be transmitted as plaintext in URL query parameters during POST requests to the GitLab en...

  • EPSS 0.19%
  • Veröffentlicht 29.05.2026 07:59:20
  • Zuletzt bearbeitet 29.05.2026 14:06:47

A flaw was found in the Quay config-tool's LDAP and SMTP validation functions. An attacker with config editor access can exploit these functions, which make outbound connections to user-supplied endpoints without proper IP or host filtering. This all...

  • EPSS 0.26%
  • Veröffentlicht 22.04.2026 09:06:19
  • Zuletzt bearbeitet 20.05.2026 13:38:24

A flaw was found in Red Hat Quay. When Red Hat Quay requests password re-verification for sensitive operations, such as token generation or robot account creation, the re-authentication prompt can be bypassed. This allows a user with a timed-out sess...

  • EPSS 0.26%
  • Veröffentlicht 08.04.2026 17:06:58
  • Zuletzt bearbeitet 30.06.2026 03:18:32

A flaw was found in Red Hat Quay's Proxy Cache configuration feature. When an organization administrator configures an upstream registry for proxy caching, Quay makes a network connection to the specified registry hostname without verifying that it p...

  • EPSS 0.41%
  • Veröffentlicht 08.04.2026 17:04:22
  • Zuletzt bearbeitet 01.07.2026 02:17:00

A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. The upload process stores intermediate data in the database using a format that, if tampered with, could allow an attacker to execute arbitrary code on the Quay s...

  • EPSS 0.24%
  • Veröffentlicht 08.04.2026 17:04:20
  • Zuletzt bearbeitet 01.07.2026 13:17:03

A flaw was found in Red Hat Quay's container image upload process. An authenticated user with push access to any repository on the registry can interfere with image uploads in progress by other users, including those in repositories they do not have ...

  • EPSS 0.41%
  • Veröffentlicht 08.04.2026 16:26:07
  • Zuletzt bearbeitet 01.07.2026 13:16:58

A flaw was found in Red Hat Quay and mirror registry for Red Hat OpenShift. The log export feature in these products allows an authenticated user to specify an arbitrary callback URL. A backend process then makes server-side HTTP requests to this pro...

  • EPSS 0.16%
  • Veröffentlicht 12.03.2026 19:16:16
  • Zuletzt bearbeitet 02.06.2026 19:23:46

A flaw was found in mirror-registry where an authenticated user can trick the system into accessing unintended internal or restricted systems by providing malicious web addresses. When the application processes these addresses, it automatically fol...