CVE-2024-3505
CVSS V2 None
CVSS V3 None
Description
JFrog Artifactory Self-Hosted versions below 7.77.3, are vulnerable to sensitive information disclosure whereby a low-privileged authenticated user can read the proxy configuration.
This does not affect JFrog cloud deployments.
Overview
- CVE ID
- CVE-2024-3505
- Assigner
- JFROG
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-04-15T07:42:27.975Z
- Last Modified Date
- 2024-04-15T07:42:27.975Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://jfrog.com/help/r/jfrog-release-information/jfrog-security-advisories |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-3505 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3505 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-23 22:54:13 | Added to TrackCVE |