Описание
regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1.
EPSS
Процентиль: 13%
0.00044
Низкий
5.2 Medium
CVSS3
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 5.2
redhat
больше 1 года назад
regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1.
CVSS3: 5.2
debian
около 1 года назад
regclient is a Docker and OCI Registry Client in Go. A malicious regis ...
CVSS3: 5.2
github
больше 1 года назад
In regclient, pinned manifest digests may be ignored
EPSS
Процентиль: 13%
0.00044
Низкий
5.2 Medium
CVSS3
Дефекты
CWE-20