CVE-2019-3867
N/A
N/A
Summary
A vulnerability was found in the Quay web application. Sessions in the Quay web application never expire. An attacker, able to gain access to a session, could use it to control or delete a user's container repository. Red Hat Quay 2 and 3 are vulnerable to this issue.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | quay | As shipped in Red Hat Quay 2 and 3. | affected |
Weaknesses
- CWE-613: CWE-613
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.