A flaw was found in the way Red Hat Quay stores robot account tokens in plain text. An attacker able to perform database queries in the Red Hat Quay database could use the tokens to read or write container images stored in the registry.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2020-01-02T16:31:53
Updated: 2024-08-04T22:17:20.136Z
Reserved: 2019-03-27T00:00:00
Link: CVE-2019-10205
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-01-02T17:15:11.470
Modified: 2023-02-12T23:33:46.323
Link: CVE-2019-10205
Redhat