CVE-2021-41834
JFrog Artifactory prior to version 7.28.0 and 6.23.38, is vulnerable to Broken Access Control, the copy functionality can be used by a low-privileged user to read and copy any artifact that exists in the Artifactory deployment due to improper permissions validation.
We have discovered 16 live websites that are affected by CVE-2021-41834.
Contact us to get more info
Affected Software
| |
---|
Product | Artifactory |
Category | Dev Tools |
Vulnerable Versions | - from 6 before 6.23.38
- from 7 before 7.28
|
Total Vulnerable Versions | 22 |
Vulnerable Domains | 16 live websites (53.33% of Artifactory install base) |
Common Weakness Enumeration
CWE-284 Improper Access Control
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2021-41834 and the relative popularity of websites