Sensitive Data Exposure through Project Administrator REST API in JFrog Artifactory versions prior to 7.31.10 and 6.23.38

Sensitive Data Exposure through Project Administrator REST API in JFrog Artifactory versions prior to 7.31.10 and 6.23.38

CVE-2021-46687 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

JFrog Artifactory prior to version 7.31.10 and 6.23.38 is vulnerable to Sensitive Data Exposure through the Project Administrator REST API. This issue affects: JFrog JFrog Artifactory JFrog Artifactory versions before 7.31.10 versions prior to 7.x; JFrog Artifactory versions before 6.23.38 versions prior to 6.x.

Learn more about our Api Penetration Testing.