CVE-2023-42661
CVSS V2 None
CVSS V3 None
Description
JFrog Artifactory prior to version 7.76.2 is vulnerable to Arbitrary File Write of untrusted data, which may lead to DoS or Remote Code Execution when a specially crafted series of requests is sent by an authenticated user. This is due to insufficient validation of artifacts.
Overview
- CVE ID
- CVE-2023-42661
- Assigner
- JFROG
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-03-07T13:56:38.162Z
- Last Modified Date
- 2024-03-07T13:56:38.162Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://jfrog.com/help/r/jfrog-release-information/jfrog-security-advisories |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-42661 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-42661 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-06-25 13:59:47 | Added to TrackCVE |