CVE-2026-4404 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Use of hard coded credentials in GoHarbor Harbor version 2.15.0 and below, allows attackers to use the default password and gain access to the web UI.
Critical CVSS: 9.4

CVE-2026-4404

Use of hard coded credentials in GoHarbor Harbor version 2.15.0 and below, allows attackers to use the default password and gain access to the web UI.
Vendor
-
Product
-
CWE
CWE-798
Yayın Tarihi
2026-03-23 15:16:35
Güncelleme
2026-03-24 16:16:36
Source Identifier
cret@cert.org
KEV Date Added
-

Kategoriler

CWE-798 CRITICAL 2026

Referanslar

https://cwe.mitre.org/data/definitions/1393.html https://github.com/goharbor/harbor/issues/1937 https://github.com/goharbor/harbor/pull/22751 https://goharbor.io/docs/1.10/install-config/run-installer-script/#:~:text=If%20you%20did%20not%20change%20them%20in%20harbor.yml,%20the%20default%20administrator%20username%20and%20password%20are%20admin%20and%20Harbor12345 https://www.kb.cert.org/vuls/id/577436