JFrog Artifactory before 7.31.10, is vulnerable to Broken... · CVE-2021-46270 · GitHub Advisory Database · GitHub

JFrog Artifactory before 7.31.10, is vulnerable to Broken...

Moderate severity Unreviewed Published Mar 3, 2022 to the GitHub Advisory Database • Updated Jul 4, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

JFrog Artifactory before 7.31.10, is vulnerable to Broken Access Control where a project admin user is able to list all available repository names due to insufficient permission validation.

References

Published by the National Vulnerability Database

Mar 2, 2022

Published to the GitHub Advisory Database Mar 3, 2022

Last updated Jul 4, 2023