Description
JFrog Artifactory before 7.36.1 and 6.23.41, is vulnerable to Insecure Deserialization of untrusted data which can lead to DoS, Privilege Escalation and Remote Code Execution when a specially crafted request is sent by a low privileged authenticated user due to insufficient validation of a user-provided serialized object.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2007-0448)
Grafana Authentication Bypass by Spoofing Vulnerability (CVE-2023-3128)
WordPress Plugin MailArchiver Cross-Site Scripting (2.10.1)
Internet Information Services Other Vulnerability (CVE-2001-0709)
WordPress Plugin Ultimate Membership Pro Cross-Site Request Forgery (8.6.2)