Description

JFrog Artifactory prior to 7.37.13 is vulnerable to Authentication Bypass, which can lead to Privilege Escalation when a specially crafted request is sent by an unauthenticated user.

Remediation

References

CVE-2022-0668

Related Vulnerabilities

Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-7537)

Oracle Database Server CVE-2007-5509 Vulnerability (CVE-2007-5509)

MySQL CVE-2018-2776 Vulnerability (CVE-2018-2776)

WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.18)

WordPress Plugin Subscribe To Comments Reloaded Multiple Vulnerabilities (140204)

Severity

Critical

Classification

CVE-2022-0668 CWE-269 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Missing Update Known Vulnerabilities