CVE-2022-46463

This PoC exploits CVE-2022-46463, an unauthorized access vulnerability in Harbor, to enumerate and download public Docker images. It interacts with Harbor's API to list repositories, tags, and build history, and can dump image layers for offline analysis.

This PoC exploits an unauthorized access vulnerability in Harbor (CVE-2022-46463) to enumerate repositories and generate Docker pull commands. It interacts with Harbor's API to fetch repository details and artifact information without authentication.

This repository contains a Python script designed to exploit CVE-2022-46463, which involves unauthorized access to Harbor registry repositories due to misconfigured permissions. The script automates the discovery, download, and extraction of Docker images from vulnerable Harbor instances.

This repository contains a functional Python script that exploits CVE-2022-46463, an unauthorized access vulnerability in Harbor, to enumerate and download public Docker images. The script interacts with Harbor's API to list repositories, tags, and download image layers without authentication.