CVE-2020-27831 is a vulnerability in Red Hat Quay
Published on May 27, 2021
A flaw was found in Red Hat Quay, where it does not properly protect the authorization token when authorizing email addresses for repository email notifications. This flaw allows an attacker to add email addresses they do not own to repository notifications.
Weakness Type
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2020-27831 has been classified to as an Authorization vulnerability or weakness.
Products Associated with CVE-2020-27831
Want to know whenever a new CVE is published for Red Hat Quay? stack.watch will email you.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.