CVE-2019-19937

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2019-19937

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-19937.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-19937

Published

2020-03-16T20:15:12.783Z

Modified

2026-04-10T04:16:58.091154Z

Severity

7.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In JFrog Artifactory before 6.18, it is not possible to restrict either system or repository imports by any admin user in the enterprise, which can lead to "undesirable results."

References

Affected packages

Git / github.com/jfrog/artifactory-docker-examples

Affected ranges

Type

GIT

Repo

https://github.com/jfrog/artifactory-docker-examples

Events

Introduced

Fixed

3967bba80fc035f1b9ae06cff954ccae8f6ca31b

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "6.18"
        }
    ]
}

Affected versions

5.*

5.0.1

5.1.0

5.1.2

5.1.3

5.1.4

5.10.0

5.10.1

5.10.2

5.10.3

5.10.4

5.11.0

5.2.0

5.3.0

5.3.1

5.3.2

5.4.0

5.4.1

5.4.2

5.4.4

5.4.5

5.4.6

5.5.0

5.5.1

5.5.2

5.6.0

5.6.1

5.6.2

5.6.3

5.7.0

5.7.1

5.7.2

5.8.0

5.8.1

5.8.2

5.8.3

5.8.4

5.9.1

5.9.3

6.*

6.0.1

6.0.3

6.1.0

6.10.0

6.10.1

6.10.2

6.10.3

6.10.4

6.11.0

6.11.1

6.11.6

6.12.0

6.12.1

6.12.2

6.13.0

6.13.1

6.14.0

6.14.1

6.15.0

6.16.0

6.17.0

6.2.0

6.3.0

6.3.2

6.3.3

6.4.0

6.4.1

6.5.0

6.5.1

6.5.13

6.5.2

6.5.3

6.5.6

6.5.8

6.5.9

6.6.0

6.6.1

6.6.3

6.6.5

6.7.0

6.7.1

6.7.2

6.7.3

6.8.0

6.8.1

6.8.2

6.8.3

6.8.4

6.8.6

6.8.7

6.9.0

6.9.1

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-19937.json"