Vulnerabilities > Redhat > Quay > 3.0.3

DATE CVE VULNERABILITY TITLE RISK
2021-05-27 CVE-2020-27832 Cross-site Scripting vulnerability in Redhat Quay
A flaw was found in Red Hat Quay, where it has a persistent Cross-site Scripting (XSS) vulnerability when displaying a repository's notification.
network
redhat CWE-79
6.0
6.0
2021-05-27 CVE-2020-27831 Insufficiently Protected Credentials vulnerability in Redhat Quay
A flaw was found in Red Hat Quay, where it does not properly protect the authorization token when authorizing email addresses for repository email notifications.
network
low complexity
redhat CWE-522
4.3
4.3
2020-08-11 CVE-2020-14313 Information Exposure vulnerability in Redhat Quay
An information disclosure vulnerability was found in Red Hat Quay in versions before 3.3.1.
network
low complexity
redhat CWE-200
4.0
4.0