cbcvebase.
CVE-2025-30086
published 2025-07-25

CVE-2025-30086: CNCF Harbor 2.13.x before 2.13.1 and 2.12.x before 2.12.4 allows information disclosure by administrators who can exploit an ORM Leak present in the…

PriorityP429medium4.9CVSS 3.1
AVNACLPRHUINSUCHINAN
EPSS
0.61%
44.6th percentile
CNCF Harbor 2.13.x before 2.13.1 and 2.12.x before 2.12.4 allows information disclosure by administrators who can exploit an ORM Leak present in the /api/v2.0/users endpoint to leak users' password hash and salt values. The q URL parameter allows a user to filter users by any column, and filter password=~ could be abused to leak out a user's password hash character by character. An attacker with administrator access could exploit this to leak highly sensitive information stored in the Harbor database. All endpoints that support the q URL parameter are vulnerable to this ORM leak attack.

Affected

5 ranges
VendorProductVersion rangeFixed in
github.comgoharbor_harbor>= 0 < 2.4.0-rc1.0.20250331071157-dce7d9f5cffb2.4.0-rc1.0.20250331071157-dce7d9f5cffb
github.comgoharbor_harbor>= 0 < 2.12.4+incompatible2.12.4+incompatible
github.comgoharbor_harbor>= 2.13.0 < 2.13.12.13.1
github.comgoharbor_harbor>= 2.13.0+incompatible < 2.13.1+incompatible2.13.1+incompatible
github.comgoharbor_harbor>= 2.4.0-rc1.1 < 2.12.42.12.4
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.