exploitDog

CVE-2018-19971

Опубликовано: 16 апр. 2019

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

JFrog Artifactory Pro 6.5.9 has Incorrect Access Control.

Ссылки

http://packetstormsecurity.com/files/152137/JFrog-Artifactory-Pro-6.5.9-Signature-Validation.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2019/Mar/34
Exploit
Mailing List
Third Party Advisory
http://www.securityfocus.com/bid/107518
Third Party Advisory
VDB Entry
https://bintray.com/jfrog/artifactory-pro/jfrog-artifactory-pro-zip/6.5.13#release
Product
Third Party Advisory
https://lists.openwall.net/full-disclosure/2019/03/19/3
Exploit
Mailing List
Third Party Advisory
http://packetstormsecurity.com/files/152137/JFrog-Artifactory-Pro-6.5.9-Signature-Validation.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2019/Mar/34
Exploit
Mailing List
Third Party Advisory
http://www.securityfocus.com/bid/107518
Third Party Advisory
VDB Entry
https://bintray.com/jfrog/artifactory-pro/jfrog-artifactory-pro-zip/6.5.13#release
Product
Third Party Advisory
https://lists.openwall.net/full-disclosure/2019/03/19/3
Exploit
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:jfrog:artifactory:6.5.9:*:*:*:pro:*:*:*

EPSS

Процентиль: 75%

0.00878

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-345

Связанные уязвимости

GHSA-wc65-hw3j-6grm

CVSS3: 9.8

github

больше 3 лет назад

JFrog Artifactory Pro 6.5.9 has Incorrect Access Control.

EPSS

Процентиль: 75%

0.00878

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-345