Security Advisory

CVE-2025-48374

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-22 20:43:13

Last updated 2025-05-23 14:33:24

Assigner GitHub_M

State PUBLISHED

Description

zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. Prior to version 2.1.3 (corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f), when using Keycloak as an oidc provider, the clientsecret gets printed into the container stdout logs for an example at container startup. Version 2.1.3 (corresponding to pseudoversion 1.4.4-0.20250522160828-8a99a3ed231f) fixes the issue.

← Browse all CVEs View on cve.org ↗