Description

JFrog Artifactory later than version 7.17.4 but prior to version 7.77.0 is vulnerable to an issue whereby a sequence of improperly handled exceptions in repository configuration initialization steps may lead to exposure of sensitive data.

Remediation

References

CVE-2023-42509

Related Vulnerabilities

Drupal Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2020-36193)

WordPress 4.4.x Denial of Service Vulnerability (4.4 - 4.4.14)

Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7862)

MySQL CVE-2022-21417 Vulnerability (CVE-2022-21417)

IBM WebSEAL Use of Hard-coded Credentials Vulnerability (CVE-2018-1887)

Severity

High

Classification

CVE-2023-42509 CWE-755 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities