BIT-artifactory-2024-4142

Import Source

https://github.com/bitnami/vulndb/tree/main/data/artifactory/BIT-artifactory-2024-4142.json

Aliases

CVE-2024-4142

Published

2024-05-03T07:16:08.288Z

Modified

2024-05-03T08:12:13.772361Z

Summary

[none]

Details

An Improper input validation vulnerability that could potentially lead to privilege escalation was discovered in JFrog Artifactory.Due to this vulnerability, users with low privileges may gain administrative access to the system.This issue can also be exploited in Artifactory platforms with anonymous access enabled.

References

https://jfrog.com/help/r/jfrog-release-information/jfrog-security-advisories

Affected packages

Bitnami / artifactory

Package

Name: artifactory

Affected ranges

Type: SEMVER
Events: Introduced

7.78.0

Fixed

7.84.6

Introduced

7.70.0

Fixed

7.77.11

Introduced

7.69.0

Fixed

7.71.21

Introduced

7.64.0

Fixed

7.68.21

Introduced

7.60.0

Fixed

7.63.21

Introduced

7.56.0

Fixed

7.59.22

Introduced

0.0.0

Fixed

7.55.17