Security Advisory

CVE-2019-3867

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-18 18:04:18

Last updated 2024-08-04 19:19:18

Assigner redhat

State PUBLISHED

Description

A vulnerability was found in the Quay web application. Sessions in the Quay web application never expire. An attacker, able to gain access to a session, could use it to control or delete a users container repository. Red Hat Quay 2 and 3 are vulnerable to this issue.

← Browse all CVEs View on cve.org ↗