Harbor is an open-source container registry and artifact management tool that provides a secure and compliant solution for storing, distributing, and managing container images. With features such as role-based access control, vulnerability scanning, image signing, and policy enforcement, Harbor enhances the security, reliability, and governance of container-based applications.

Harbor

Homebrew is a free and open-source software package management system that simplifies the installation of software on Apple's macOS operating system and Linux. The name is intended to suggest the idea of building software on the Mac depending on the user's taste. Originally written by Max Howell, the package manager has gained popularity in the Ruby on Rails community and earned praise for its extensibility.

Homebrew

An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature."

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2022-31670	HIGH	7.7	Harbor	github.com/goharbor/harbor	No	Yes	Nov 14, 2024
CVE-2022-31669	HIGH	7.7	Harbor	harbor	No	Yes	Nov 14, 2024
CVE-2022-31671	HIGH	7.4	Harbor	cpe:2.3:a:linuxfoundation:harbor	No	Yes	Nov 14, 2024
CVE-2025-30086	MEDIUM	4.9	Harbor	github.com/goharbor/harbor	No	Yes	Jul 25, 2025
CVE-2025-32019	MEDIUM	4.1	Harbor	github.com/goharbor/harbor	No	Yes	Jul 23, 2025

CVE-2022-46463:
Harbor vulnerability analysis and mitigation

7.5

Related Harbor vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2022-46463: Harbor vulnerability analysis and mitigation