VYPR
Unrated severityNVD Advisory· Published May 16, 2022· Updated Aug 2, 2024

CVE-2022-0573

CVE-2022-0573

Description

JFrog Artifactory before 7.36.1 and 6.23.41, is vulnerable to Insecure Deserialization of untrusted data which can lead to DoS, Privilege Escalation and Remote Code Execution when a specially crafted request is sent by a low privileged authenticated user due to insufficient validation of a user-provided serialized object.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Jfrog/Artifactoryllm-fuzzy2 versions
    <=7.36.1 and <=6.23.41+ 1 more
    • (no CPE)range: <=7.36.1 and <=6.23.41
    • (no CPE)range: JFrog Artifactory versions before 7.36.1
  • osv-coords
    Range: >= 6.0.0, < 6.23.41

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.