Lucene search
RedhatCVELIST:CVE-2019-10205HistoryJan 02, 2020 - 4:31 p.m.
CVE-2019-10205
2020-01-0216:31:53
CWE-522
redhat
www.cve.org
3
CVSS3
6
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H
AI Score
6.2
Confidence
High
EPSS
0
Percentile
12.6%
A flaw was found in the way Red Hat Quay stores robot account tokens in plain text. An attacker able to perform database queries in the Red Hat Quay database could use the tokens to read or write container images stored in the registry.
CNA Affected
[
{
"product": "quay",
"vendor": "RED HAT",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
]Related
nvd
nvd
CVE-2019-10205
2020-01-02 17:15:11
cve
cve
CVE-2019-10205
2020-01-02 17:15:11
redhat
redhat
(RHSA-2019:4341) Moderate: Red Hat Quay v3.2.0 security and bug fix update
2019-12-19 14:57:18
redhatcve
redhatcve
CVE-2019-10205
2019-09-19 01:22:04
prion
prion
Design/Logic Flaw
2020-01-02 17:15:00
CVSS3
6
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H
AI Score
6.2
Confidence
High
EPSS
0
Percentile
12.6%
Related for CVELIST:CVE-2019-10205