Vulnerabilities > Redhat > Quay > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-10-17 CVE-2024-9683 Improper Authentication vulnerability in Redhat Quay 3.0.0
A vulnerability was found in Quay, which allows successful authentication even when a truncated password version is provided.
network
low complexity
redhat CWE-287
5.3
2024-06-12 CVE-2024-5891 Unspecified vulnerability in Redhat Quay 3.0.0
A vulnerability was found in Quay.
network
high complexity
redhat
4.2
2023-11-07 CVE-2023-4956 Improper Restriction of Rendered UI Layers or Frames vulnerability in Redhat Quay 3.0.0
A flaw was found in Quay.
network
low complexity
redhat CWE-1021
4.3
2023-09-15 CVE-2023-4959 Cross-Site Request Forgery (CSRF) vulnerability in Redhat Quay 3.0.0
A flaw was found in Quay.
network
low complexity
redhat CWE-352
6.5
2023-07-24 CVE-2023-3384 Cross-site Scripting vulnerability in Redhat Quay 3.0.0
A flaw was found in the Quay registry.
network
low complexity
redhat CWE-79
5.4
2022-09-01 CVE-2022-2447 Operation on a Resource after Expiration or Release vulnerability in multiple products
A flaw was found in Keystone.
network
high complexity
openstack redhat CWE-672
6.6
2021-05-27 CVE-2020-27831 Insufficiently Protected Credentials vulnerability in Redhat Quay
A flaw was found in Red Hat Quay, where it does not properly protect the authorization token when authorizing email addresses for repository email notifications.
network
low complexity
redhat CWE-522
4.3
2021-03-18 CVE-2019-3867 Unspecified vulnerability in Redhat Quay 2.0.0/3.0.0
A vulnerability was found in the Quay web application.
low complexity
redhat
4.1
2020-08-11 CVE-2020-14313 Unspecified vulnerability in Redhat Quay
An information disclosure vulnerability was found in Red Hat Quay in versions before 3.3.1.
network
low complexity
redhat
4.3
2020-06-22 CVE-2019-3865 Cross-site Scripting vulnerability in Redhat Quay 2.0.0
A vulnerability was found in quay-2, where a stored XSS vulnerability has been found in the super user function of quay.
network
low complexity
redhat CWE-79
6.1