JFrog Artifactory before 7.31.10, is vulnerable to Broken Access Control where a project admin user is able to list all available repository names due to insufficient permission validation.
References
Configurations
History
26 Jun 2023, 18:56
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other |
Information
Published : 2022-03-02 22:15
Updated : 2024-02-28 19:09
NVD link : CVE-2021-46270
Mitre link : CVE-2021-46270
CVE.ORG link : CVE-2021-46270
JSON object : View
Products Affected
jfrog
- artifactory
CWE