Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Artifactory Incorrect Default Permissions Vulnerability - CVE-2021-46270 - Vulnerability Database
Artifactory

Artifactory Incorrect Default Permissions Vulnerability - CVE-2021-46270

Low
Reference: CVE-2021-46270
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-46270
Title: Artifactory Incorrect Default Permissions Vulnerability
Overview:

JFrog Artifactory before 7.31.10 is vulnerable to Broken Access Control where a project admin user is able to list all available repository names due to insufficient permission validation.