cbcvebase.
CVE-2024-6915
published 2024-08-05

CVE-2024-6915: JFrog Artifactory versions below 7.90.6, 7.84.20, 7.77.14, 7.71.23, 7.68.22, 7.63.22, 7.59.23, 7.55.18 are vulnerable to Improper Input Validation that could…

PriorityP349critical9.3CVSS 3.1
AVNACLPRNUINSCCNIHAL
EPSS
0.60%
44.0th percentile
JFrog Artifactory versions below 7.90.6, 7.84.20, 7.77.14, 7.71.23, 7.68.22, 7.63.22, 7.59.23, 7.55.18 are vulnerable to Improper Input Validation that could potentially lead to cache poisoning.

Affected

8 ranges
VendorProductVersion rangeFixed in
jfrogartifactory< 7.90.67.90.6
jfrogartifactory< 7.84.207.84.20
jfrogartifactory< 7.77.147.77.14
jfrogartifactory< 7.71.237.71.23
jfrogartifactory< 7.68.227.68.22
jfrogartifactory< 7.63.227.63.22
jfrogartifactory< 7.59.237.59.23
jfrogartifactory< 7.55.187.55.18
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.