What is the CVSS score of CVE-2026-31801?

CVE-2026-31801 has a CVSS 3.1 base score of 7.7 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N. EPSS exploitation probability: 0.0%.

Which versions of Zot are affected by CVE-2026-31801?

A HIGH severity vulnerability (CVE-2026-31801) has been identified in zot container registry software with no patch currently available.. A patch is available.

How to fix or mitigate CVE-2026-31801?

Within 24 hours: Inventory all zot deployments and assess exposure; notify stakeholders and document affected systems. Within 7 days: Implement network segmentation to restrict zot access to authorized personnel only; enable enhanced logging and monitoring for suspicious registry activity; evaluate alternative registry solutions. Within 30 days: Establish a vendor communication protocol to track patch availability; conduct security assessment of container images already stored in affected registries; develop incident response procedures for potential registry compromise.

Zot CVE-2026-31801

HIGH

Incorrect Authorization (CWE-863)

2026-03-10 security-advisories@github.com

GHSA-85jx-fm8m-x8c6

Authentication Bypass Zot Suse

7.7

CVSS 3.1 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

7.7 HIGH

AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

SUSE

HIGH

qualitative

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

High

Availability

None

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

CVE Published

Mar 10, 2026 - 21:16 nvd

HIGH 7.7

DescriptionGitHub Advisory

zot is ancontainer image/artifact registry based on the Open Container Initiative Distribution Specification. From 1.3.0 to 2.1.14, zot’s dist-spec authorization middleware infers the required action for PUT /v2/{name}/manifests/{reference} as create by default, and only switches to update when the tag already exists and reference != "latest". As a result, when latest already exists, a user who is allowed to create (but not allowed to update) can still pass the authorization check for an overwrite attempt of latest. This vulnerability is fixed in 2.1.15.

AnalysisAI

Zot registry versions 1.3.0 through 2.1.14 have an authorization bypass in the manifest upload endpoint that allows authenticated users with only create permissions to overwrite the latest tag when it already exists. An attacker with limited write privileges can leverage this flaw to replace the latest image version, potentially distributing malicious container images to downstream consumers. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Authenticate as user with create permission

Exploit

Send PUT request to /v2/{name}/manifests/latest

Execution

Bypass authorization check inferring create action

Impact

Overwrite latest manifest tag

Access

Authenticate as user with create permission

Exploit

Send PUT request to /v2/{name}/manifests/latest

Execution

Bypass authorization check inferring create action

Impact

Overwrite latest manifest tag

Vulnerability AssessmentAI

Exploitation	zot versions 1.3.0 to 2.1.14 with dist-spec authorization middleware enabled. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 7.7 (HIGH). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker could exploit this vulnerability to compromise the affected system.
Remediation	Fixed in version 2.1.15.. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all zot deployments and assess exposure; notify stakeholders and document affected systems. …

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: High

Product	Status
openSUSE Leap 15.6	Fixed
SUSE Linux Enterprise Module for Package Hub 15 SP5	Fixed
SUSE Linux Enterprise Module for Package Hub 15 SP6	Fixed
openSUSE Leap 15.5	Fixed

CVE-2026-31801 vulnerability details – vuln.today

Back

Zot CVE-2026-31801

Severity by source

CVSS VectorGitHub Advisory

Lifecycle Timeline

DescriptionGitHub Advisory

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Vendor StatusVendor

SUSE

Share

External POC / Exploit Code