VYPR
Unrated severityNVD Advisory· Published Mar 2, 2022· Updated Aug 4, 2024

CVE-2021-45074

CVE-2021-45074

Description

JFrog Artifactory before 7.29.3 and 6.23.38, is vulnerable to Broken Access Control, a low-privileged user is able to delete other known users OAuth token, which will force a reauthentication on an active session or in the next UI session.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Jfrog/Artifactoryllm-fuzzy2 versions
    <7.29.3, <6.23.38+ 1 more
    • (no CPE)range: <7.29.3, <6.23.38
    • (no CPE)range: JFrog Artifactory versions before 7.29.3
  • osv-coords
    Range: >= 6.0.0, < 6.23.38

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.