CVE-2026-32589EPSS p14.4%

CVE-2026-32589CVE-2026-32589

redhat / mirror_registry_for_red_hat_openshift

Description

A flaw was found in Red Hat Quay's container image upload process. An authenticated user with push access to any repository on the registry can interfere with image uploads in progress by other users, including those in repositories they do not have access to. This could allow the attacker to read, modify, or cancel another user's in-progress image upload.

Scoring

CVSS 7.4 ()
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
EPSS0.24% probability of exploitation · percentile 14.4% · 2026-06-19T12:03:05Z
Last modified2026-06-09

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-32590
CVE
CVE-2026-32591
CVE
CVE-2026-22908
CVE
CVE-2025-3528
CVE
CVE-2026-6848
CVE
CVE-2026-11569
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.