cbcvebase.
CVE-2024-22244
published 2024-06-10

CVE-2024-22244: Open Redirect in Harbor <=v2.8.4, <=v2.9.2, and <=v2.10.0 may redirect a user to a malicious site.

PriorityP423medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
0.36%
28.3th percentile
Open Redirect in Harbor <=v2.8.4, <=v2.9.2, and <=v2.10.0 may redirect a user to a malicious site.

Affected

11 ranges
VendorProductVersion rangeFixed in
github.comgoharbor_harbor>= 0 < 2.8.52.8.5
github.comgoharbor_harbor>= 0 < 2.8.5+incompatible2.8.5+incompatible
github.comgoharbor_harbor>= 2.10.0 < 2.10.12.10.1
github.comgoharbor_harbor>= 2.10.0+incompatible < 2.10.1+incompatible2.10.1+incompatible
github.comgoharbor_harbor>= 2.9.0 < 2.9.32.9.3
github.comgoharbor_harbor>= 2.9.0+incompatible < 2.9.3+incompatible2.9.3+incompatible
harborharbor2.10 – 2.10.0
harborharbor2.8 – 2.8.4
linuxfoundationharbor
linuxfoundationharbor>= 2.8.0 < 2.8.52.8.5
linuxfoundationharbor>= 2.9.0 < 2.9.32.9.3
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.