CVE-2023-42509

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Published Mar 7, 2024

Updated: Mar 8, 2024

CWE ID 755

Summary

CVE-2023-42509 is a vulnerability affecting JFrog Artifactory versions between 7.17.4 and 7.76.9. This issue arises due to improper exception handling during repository configuration initialization, resulting in the exposure of sensitive data. When certain exceptions occur in a specific sequence, they are not adequately managed, leading to unintended disclosure of confidential information. Users of JFrog Artifactory are advised to update their software to the latest version, 7.77.0 or higher, to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sp67eP
https://www.cve.org/CVERecord?id=CVE-2023-42509
https://nvd.nist.gov/vuln/detail/CVE-2023-42509

Back to Vulnerability Database

CVE-2023-42509

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations