Security Advisory

CVE-2021-41834

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-23 07:05:10

Last updated 2024-08-04 03:22:24

Assigner JFROG

State PUBLISHED

Description

JFrog Artifactory prior to version 7.28.0 and 6.23.38, is vulnerable to Broken Access Control, the copy functionality can be used by a low-privileged user to read and copy any artifact that exists in the Artifactory deployment due to improper permissions validation.

← Browse all CVEs View on cve.org ↗