Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-17697

The Ping() function in ui/api/target.go in Harbor through 1.3.0-rc4 has SSRF via the endpoint parameter to /api/targets/ping.

2017-12-15T09:29:00.437

2025-04-20T01:37:25.860

Deferred

CVSSv3.1: 8.6 (HIGH)

AV:N/AC:L/Au:N/C:P/I:N/A:N

10.0

2.9

Type	Vendor	Product	Version/Range	Vulnerable?
Application	linuxfoundation	harbor	< 1.3.0	Yes
Application	linuxfoundation	harbor	1.3.0	Yes
Application	linuxfoundation	harbor	1.3.0	Yes
Application	linuxfoundation	harbor	1.3.0	Yes
Application	linuxfoundation	harbor	1.3.0	Yes
Application	linuxfoundation	harbor	1.3.0	Yes