HIGH7.7CVE-2026-31801zot’s create-only policy allows overwrite attempts of existing latest tag (update permission not required) in zotregistry.dev/zot from 0
HIGH7.7CVE-2026-31801zot’s create-only policy allows overwrite attempts of existing latest tag (update permission not required) in zotregistry.dev/zot >= 1.3.0-20210831063041-c8779d9e87d9, <= 1.4.4-20251014054906-73eef25681af
HIGH7.3CVE-2025-23208Zot IdP group membership revocation ignored in zotregistry.dev/zot from 0
HIGH7.3Zot IdP group membership revocation ignored in zotregistry.dev/zot
from 0, < 2.1.2
MEDIUM4.3Cache driver GetBlob() allows read access to any blob without access control check in zotregistry.dev/zot
from 0
MEDIUM4.3Cache driver GetBlob() allows read access to any blob without access control check in zotregistry.dev/zot
from 0, < 2.1.0
—zot logs secrets in zotregistry.dev/zot
from 0, < 1.4.4-0.20250522160828-8a99a3ed231f
—zot logs secrets in zotregistry.dev/zot
from 0, < 1.4.4-0.20250522160828-8a99a3ed231f