Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Mirror-registry: openshift mirror registry: user enumeration via authentication error messages
Vulnerability Description
A flaw was found in the OpenShift Mirror Registry. This vulnerability allows an unauthenticated, remote attacker to enumerate valid usernames and email addresses via different error messages during authentication failures and account creation.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
通过错误消息导致的信息暴露
Vulnerability Title
Red Hat OpenShift Mirror Registry 安全漏洞
Vulnerability Description
Red Hat OpenShift Mirror Registry是美国红帽(Red Hat)公司的一个轻量级容器镜像仓库服务。 Red Hat OpenShift Mirror Registry存在安全漏洞,该漏洞源于身份验证失败和账户创建期间的不同错误消息,可能导致未经身份验证的远程攻击者枚举有效用户名和电子邮件地址。
CVSS Information
N/A
Vulnerability Type
N/A