VIR Vulnerability Intelligence Relay

CVE-2026-32591

medium
Published 2026-04-08 · Modified 2026-06-03
💬 Discuss on Community ✚ Propose mitigation
CVSS v3
5.5
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
CVSS v4 NEW
—
not yet in upstream
VIR risk
5.5

Description

A flaw was found in Red Hat Quay's Proxy Cache configuration feature. When an organization administrator configures an upstream registry for proxy caching, Quay makes a network connection to the specified registry hostname without verifying that it points to a legitimate external service. An attacker with organization administrator privileges could supply a crafted hostname to force the Quay server to make requests to internal network services, cloud infrastructure endpoints, or other resources that should not be accessible from the Quay application.

Predictions

Exploit likelihood
65%
Patch ETA
—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

Mitigation details

Source: Red Hat Errata — Red Hat Inc. · View original ↗ · Open-Errata-API

Description mirror-registry: quay: server-side request forgery in proxy cache upstream registry configuration Red Hat statement Exploitation requires the attacker to be authenticated as an organization administrator. CVSS v3: 5.2 (CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:N) Errata / fixed releases ProductPackageAdvisoryReleased Red Hat Quay…

Description

mirror-registry: quay: server-side request forgery in proxy cache upstream registry configuration

Red Hat statement

Exploitation requires the attacker to be authenticated as an organization administrator.

CVSS v3: 5.2 (CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:N)

Errata / fixed releases

ProductPackageAdvisoryReleased
Red Hat Quay 3.14quay/quay-rhel8:1779689392RHSA-2026:210172026-05-26T00:00:00Z
Red Hat Quay 3.16quay/quay-rhel9:1779204086RHSA-2026:193752026-05-19T00:00:00Z

Package state

ProductPackageState
mirror registry for Red Hat OpenShiftopenshift/mirror-registry-rhel8Affected
mirror registry for Red Hat OpenShift 2openshift/mirror-registry-rhel8Affected

Apply commands

bash fix
Apply RHSA-2026:21017 for Red Hat Quay 3.14
yum update -y quay/quay-rhel8:1779689392
# or:
dnf upgrade -y quay/quay-rhel8:1779689392

Affected

VendorProductVersion
redhatmirror registry for Red Hat OpenShiftAffected
redhatmirror registry for Red Hat OpenShift 2Affected

Application impact
VendorProductVersionsFixed
redhat redhatmirror_registry_for_red_hat_openshift-
redhat redhatmirror_registry_for_red_hat_openshift2.0
redhat redhatquay3.0.0

References

CWEs

CWE-918

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.