CVE Published: 25/04/2024 |
CVE Updated: 24/11/2024 |
CVE Year: 2024 Source: redhat |
Vendor: |
Product: Status : PUBLISHED
CVE-2024-3625 Description
A flaw was found in Quay, where Quay\'s database is stored in plain text in mirror-registry on Jinja\'s config.yaml file. This issue leaves the possibility of a malicious actor with access to this file to gain access to Quay\'s Redis instance.