CVE-2022-31666
Published
CVSS v3
7.7
HIGH
CVSS v2
N/A
Affected
1
PROJECT
Description
Harbor fails to validate user permissions while deleting Webhook policies, allowing malicious users to view, update and delete Webhook policies of other users. The attacker could modify Webhook policies configured in other projects.
An open source trusted cloud native registry project that stores, signs, and scans content.
GitHub