Blind SQL Injection Vulnerability in JFrog Artifactory for Enterprise+ Deployments
CVE-2021-3860
What is CVE-2021-3860?
JFrog Artifactory versions prior to 7.25.4 for Enterprise+ deployments are susceptible to a Blind SQL Injection vulnerability. This flaw allows low privileged authenticated users to exploit incomplete validation during SQL queries, potentially leading to unauthorized data access. It highlights the necessity for robust input validation processes to secure applications against such injection attacks.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
JFrog Artifactory JFrog Artifactory versions before 7.25.4 with E+ license < 7.25.4
JFrog Artifactory JFrog Artifactory versions before 6.23.30 with E+ license < 6.23.30
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved