CVE-2026-32589: Authorization Bypass Through User-Controlled Key in Red Hat mirror registry for Red Hat OpenShift
A flaw was found in Red Hat Quay's container image upload process. An authenticated user with push access to any repository on the registry can interfere with image uploads in progress by other users, including those in repositories they do not have access to. This could allow the attacker to read, modify, or cancel another user's in-progress image upload.
AI Analysis
Technical Summary
This vulnerability affects Red Hat Quay's container image upload process in the mirror registry for Red Hat OpenShift. It allows an authenticated user with push access to any repository to interfere with image uploads in progress by other users, even in repositories where they lack access. This can lead to unauthorized reading, modification, or cancellation of image uploads. The CVSS 3.1 score is 7.1, indicating high severity with network attack vector, high impact on integrity, and low impact on confidentiality and availability. The vendor advisory link is provided but does not explicitly confirm patch availability or remediation details.
Potential Impact
An attacker with authenticated push access can bypass authorization controls to interfere with other users' image uploads, potentially leading to unauthorized disclosure (read), modification, or denial (cancel) of container images being uploaded. This could affect the integrity and availability of container images in the registry, impacting deployment and security of containerized applications.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-32589 for current remediation guidance. No explicit patch or workaround is mentioned in the provided data. Users should monitor the vendor advisory for updates and apply any official fixes once available.
CVE-2026-32589: Authorization Bypass Through User-Controlled Key in Red Hat mirror registry for Red Hat OpenShift
Description
A flaw was found in Red Hat Quay's container image upload process. An authenticated user with push access to any repository on the registry can interfere with image uploads in progress by other users, including those in repositories they do not have access to. This could allow the attacker to read, modify, or cancel another user's in-progress image upload.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability affects Red Hat Quay's container image upload process in the mirror registry for Red Hat OpenShift. It allows an authenticated user with push access to any repository to interfere with image uploads in progress by other users, even in repositories where they lack access. This can lead to unauthorized reading, modification, or cancellation of image uploads. The CVSS 3.1 score is 7.1, indicating high severity with network attack vector, high impact on integrity, and low impact on confidentiality and availability. The vendor advisory link is provided but does not explicitly confirm patch availability or remediation details.
Potential Impact
An attacker with authenticated push access can bypass authorization controls to interfere with other users' image uploads, potentially leading to unauthorized disclosure (read), modification, or denial (cancel) of container images being uploaded. This could affect the integrity and availability of container images in the registry, impacting deployment and security of containerized applications.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-32589 for current remediation guidance. No explicit patch or workaround is mentioned in the provided data. Users should monitor the vendor advisory for updates and apply any official fixes once available.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- redhat
- Date Reserved
- 2026-03-12T14:39:53.657Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
- Vendor Advisory Urls
- [{"url":"https://access.redhat.com/security/cve/CVE-2026-32589","vendor":"Red Hat"}]
Threat ID: 69d736fd1cc7ad14da418ad5
Added to database: 4/9/2026, 5:19:57 AM
Last enriched: 4/9/2026, 5:22:35 AM
Last updated: 4/10/2026, 8:33:37 AM
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.