Harbor 1.1.0-2.5.3 - Unauthenticated Access to Image Repositories
An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. NOTE: the vendor's position is that this "is clearly described in the documentation as a feature."