Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
JFrog Artifactory prior to version 7.33.6 and 6.23.38, is vulnerable to CSRF ( Cross-Site Request Forgery) for specific endpoints. This issue affects: JFrog JFrog Artifactory JFrog Artifactory versions before 7.33.6 versions prior to 7.x; JFrog Artifactory versions before 6.23.38 versions prior to 6.x.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
JFrog Artifactory 跨站请求伪造漏洞
Vulnerability Description
JFrog Artifactory是以色列JFrog公司的一款开源的通用Artifact存储库管理器,它支持集群和高可用性Docker注册表,并提供端到端的用于跟踪从开发到生产的工件自动化解决方案。 JFrog Artifactory 7.33.6之前的7.x版本和6.23.38之前的6.x版本存在安全漏洞,该漏洞源于对于特定的端点存在CSRF(跨站请求伪造)漏洞。这个问题会影响到JFrog JFrog Artifactory 7.33.6之前的7.x版本;JFrog Artifactory 6.23.3
CVSS Information
N/A
Vulnerability Type
N/A