CVE-2023-42508

JFrog Artifactory Improper header input validation leads to email manipulation sent from the platform

JFrog Artifactory prior to version 7.66.0 is vulnerable to specific endpoint abuse with a specially crafted payload, which can lead to unauthenticated users being able to send emails with manipulated email body.

We have discovered 1 live websites that are affected by CVE-2023-42508.

Affected Software


Product	Artifactory
Category	Dev Tools
Vulnerable Versions	from 7 before 7.66
Total Vulnerable Versions	22
Vulnerable Domains	1 live websites (3.33% of Artifactory install base)

Common Weakness Enumeration

CWE-20 Improper Input Validation

Distribution by Website Rank

The diagram provides a graphic representation of the correlation between the occurrence of CVE-2023-42508 and the relative popularity of websites

Available Reports

Website List

Details

Published - Oct 3, 2023
Updated - Oct 3, 2023

CWE

CWE-20

CVE References

CWE References

cwe.mitre.org

Countries

France	1 websites

TLDs

.fr	1 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Geographical Distribution

The distribution of websites across the globe that are exposed to CVE-2023-42508 through included software libraries and plugins.

References

https://jfrog.com/help/r/jfrog-release-information/jfrog-security-advisories

Websites affected by CVE-2023-42508

Top websites that are affected by CVE-2023-42508. Please click on the "Contact us" button above to get more information.

Domain	Country	Rank	Contacts
**************..***.fr	France	,,*

See full domain list