CVE-2020-13794
published 2020-09-30CVE-2020-13794: Harbor 1.9.* 1.10.* and 2.0.* allows Exposure of Sensitive Information to an Unauthorized Actor.
PriorityP420medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
EPSS
1.27%
66.1th percentile
Harbor 1.9.* 1.10.* and 2.0.* allows Exposure of Sensitive Information to an Unauthorized Actor.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | goharbor_harbor | >= 0 < 2.0.3 | 2.0.3 |
| github.com | goharbor_harbor | >= 0 < 2.0.3+incompatible | 2.0.3+incompatible |
| linuxfoundation | harbor | >= 1.9.0 < 2.0.3 | 2.0.3 |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
ghsa4.3MEDIUM
osv4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Authenticated users can exploit an enumeration vulnerability in Harbor in github.com/goharbor/harbor
osv·2024-08-21
CVE-2020-13794 Authenticated users can exploit an enumeration vulnerability in Harbor in github.com/goharbor/harbor
Authenticated users can exploit an enumeration vulnerability in Harbor in github.com/goharbor/harbor
Authenticated users can exploit an enumeration vulnerability in Harbor in github.com/goharbor/harbor
OSV
Authenticated users can exploit an enumeration vulnerability in Harbor
osv·2021-05-24·CVSS 4.3
CVE-2020-13794 [MEDIUM] Authenticated users can exploit an enumeration vulnerability in Harbor
Authenticated users can exploit an enumeration vulnerability in Harbor
### **Impact**
Hidde Smit from Cyber Eagle has discovered an User Enumeration flaw in Harbor. The issue is present in the "/users" api endpoint. This endpoint is supposed to be restricted to administrators. This restriction is able to be bypassed and information can be obtained via the "search" functionality.
Non-administrator users (such as those created via self-registration) can list all usernames and user IDs by sending a GET request to /api/users/search with parameter "username" and value "_", as follows:
`curl -X GET "https:///api/users/search?username=_" -H "accept: application/json" --user :`
The vulnerability was immediately fixed by the Harbor team and all supported versions were patched. With the patched
GHSA
Authenticated users can exploit an enumeration vulnerability in Harbor
ghsa·2021-05-24·CVSS 4.3
CVE-2020-13794 [MEDIUM] CWE-862 Authenticated users can exploit an enumeration vulnerability in Harbor
Authenticated users can exploit an enumeration vulnerability in Harbor
### **Impact**
Hidde Smit from Cyber Eagle has discovered an User Enumeration flaw in Harbor. The issue is present in the "/users" api endpoint. This endpoint is supposed to be restricted to administrators. This restriction is able to be bypassed and information can be obtained via the "search" functionality.
Non-administrator users (such as those created via self-registration) can list all usernames and user IDs by sending a GET request to /api/users/search with parameter "username" and value "_", as follows:
`curl -X GET "https:///api/users/search?username=_" -H "accept: application/json" --user :`
The vulnerability was immediately fixed by the Harbor team and all supported versions were patched. With the patched
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/goharbor/harbor/releaseshttps://github.com/goharbor/harbor/security/advisories/GHSA-q9p8-33wc-h432https://www.cybereagle.io/blog/cve-2020-13794/https://github.com/goharbor/harbor/releaseshttps://github.com/goharbor/harbor/security/advisories/GHSA-q9p8-33wc-h432https://www.cybereagle.io/blog/cve-2020-13794/
2020-09-30
Published