Unrated severityNVD Advisory· Published Jan 12, 2023· Updated Apr 8, 2025

CVE-2022-46463

Description

An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature."

Affected products

Harbor/Harbordescription
osv-coords
pkg:bitnami/harbor
Range: >= 1.1.0, < 2.5.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/lanqingaa/123/blob/main/README.mdmitre
github.com/lanqingaa/123/tree/bb48caa844d88b0e41e69157f2a2734311abf02dmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.062
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000