Quay/config-tool: quay/config-tool: ssrf via unfiltered ldap and smtp config validation...

4.1 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N

Description

A flaw was found in the Quay config-tool's LDAP and SMTP validation functions. An attacker with config editor access can exploit these functions, which make outbound connections to user-supplied endpoints without proper IP or host filtering. This allows the attacker to perform internal network reconnaissance from the Quay pod's network position, potentially mapping the internal network infrastructure.

Basic Information

ID CVE-2026-10052

Source redhat

Published May 29, 2026 at 07:59

Affected Product

Vendor Red Hat

Product Red Hat Quay 3

CWE Classification

CWE-918

References

{
    "lastseen": "",
    "description": "A flaw was found in the Quay config-tool's LDAP and SMTP validation functions. An attacker with config editor access can exploit these functions, which make outbound connections to user-supplied endpoints without proper IP or host filtering. This allows the attacker to perform internal network reconnaissance from the Quay pod's network position, potentially mapping the internal network infrastructure.",
    "published": "2026-05-29T07:59:20.353Z",
    "modified": "2026-05-29T07:59:20.353Z",
    "type": "cve",
    "title": "Quay/config-tool: quay/config-tool: ssrf via unfiltered ldap and smtp config validation endpoints",
    "source": "redhat",
    "references": "https://access.redhat.com/security/cve/CVE-2026-10052\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2483157",
    "id": "CVE-2026-10052",
    "bulletinFamily": "",
    "cwe": [
        "CWE-918"
    ],
    "cvelist": null,
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 4.1,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Red Hat Quay 3",
    "version": "",
    "vendor": "Red Hat",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Quay/config-tool: quay/config-tool: ssrf via unfiltered ldap and smtp config validation endpoints_CVE-2026-10052