Main Vulnerability Database SB2023033116

SB2023033116 - Authentication bypass in Harbor-helm

Published: March 31, 2023

Security Bulletin ID SB2023033116

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper Authentication (CVE-ID: N/A)

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to insecure configuration when installing Harbor with Harbor-helm. If the "core.secretName" option in the values.yaml is not set, the application will use the default and publicly available public/private key to sign the JWT token, which is used to push/pull images in Harbor. As a result, a remote non-authenticated attacker can forge the JWT token and push/pull images in Harbor without any authentication.

Remediation

Install update from vendor's website.

References

https://github.com/goharbor/harbor/security/advisories/GHSA-j7jh-fmcm-xxwv