Description
JFrog Artifactory before 7.36.1 and 6.23.41, is vulnerable to Insecure Deserialization of untrusted data which can lead to DoS, Privilege Escalation and Remote Code Execution when a specially crafted request is sent by a low privileged authenticated user due to insufficient validation of a user-provided serialized object.
Remediation
References
Related Vulnerabilities
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-28735)
Moodle Other Vulnerability (CVE-2006-4942)
WordPress Plugin Availability Calendar SQL Injection (1.2)
WordPress Plugin Delete Comments By Status Multiple Cross-Site Scripting Vulnerabilities (1.5.2)
OpenSSL Resource Management Errors Vulnerability (CVE-2006-2937)