CVE-2026-6848
5.4 MEDIUMA flaw was found in Red Hat Quay
Published: 2026-04-22 · Last updated: 2026-05-20
Severity and scoring
- CVSS
- 5.4 MEDIUM
- Vector
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
- CWE
- CWE-613
Affected products
| Vendor | Product |
|---|---|
| redhat | quay |
Description
A flaw was found in Red Hat Quay. When Red Hat Quay requests password re-verification for sensitive operations, such as token generation or robot account creation, the re-authentication prompt can be bypassed. This allows a user with a timed-out session, or an attacker with access to an idle authenticated browser session, to perform privileged actions without providing valid credentials. The vulnerability enables unauthorized execution of sensitive operations despite the user interface displaying an error for invalid credentials.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-6848
- [Vendor advisory]https://access.redhat.com/security/cve/CVE-2026-6848
- [Vendor advisory]https://bugzilla.redhat.com/show_bug.cgi?id=2460119
Related CVEs
Same vendor
- CVE-2026-1767 — A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component (5.6 MEDIUM)
- CVE-2026-1766 — A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 com... (5.6 MEDIUM)
- CVE-2026-11793 — A stack buffer overflow flaw was found in 389 Directory Server (4.9 MEDIUM)
- CVE-2026-11790 — A flaw was found in 389 Directory Server (4.9 MEDIUM)
- CVE-2026-11789 — A flaw was found in 389 Directory Server (4.9 MEDIUM)
Same CWE
- CVE-2026-53843 — OpenClaw before 2026.5.26 contains an authorization bypass vulnerability where a surviving pairing-scoped device session can re-establish... (8.8 HIGH)
- CVE-2026-53776 — Perry before 0.5.1166 contains a JWT validation vulnerability that allows remote attackers to bypass token expiration by exploiting the u... (9.1 CRITICAL)
- CVE-2026-44188 — A flaw was found in Ansible Lightspeed (5.3 MEDIUM)
- CVE-2026-53830 — OpenClaw before 2026.4.22 contains a webhook secret revocation bypass vulnerability allowing callers with old Slack and Zalo webhook secr... (6.5 MEDIUM)
- CVE-2026-53824 — OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing comm... (6.5 MEDIUM)