High severity8.6OSV Advisory· Published Dec 15, 2017· Updated Jun 17, 2026
CVE-2017-17697
CVE-2017-17697
Description
The Ping() function in ui/api/target.go in Harbor through 1.3.0-rc4 has SSRF via the endpoint parameter to /api/targets/ping.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:linuxfoundation:harbor:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:linuxfoundation:harbor:*:*:*:*:*:*:*:*range: <1.3.0
- cpe:2.3:a:linuxfoundation:harbor:1.3.0:-:*:*:*:*:*:*
- cpe:2.3:a:linuxfoundation:harbor:1.3.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:linuxfoundation:harbor:1.3.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:linuxfoundation:harbor:1.3.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:linuxfoundation:harbor:1.3.0:rc4:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
1- github.com/vmware/harbor/issues/3755nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.