CVE-2020-14313

Summary

An information disclosure vulnerability was found in Red Hat Quay in versions before 3.3.1. This flaw allows an attacker who can create a build trigger in a repository, to disclose the names of robot accounts and the existence of private repositories within any namespace.

Affected Software

VendorProductVersion RangeStatus
n/aQuayQuay versions before 3.3.1affected

Weaknesses

  • Exposure of Sensitive Information to an Unauthorized Actor

ADP Enrichment

CVE Program Container

Additional References

References