← back
CVE-2019-19937

CVE-2019-19937

EPSS 1.5%
In JFrog Artifactory before 6.18, it is not possible to restrict either system or repository imports by any admin user in the enterprise, which can lead to "undesirable results."
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.jfrog.com/confluence/display/RTF6X/Importing+and+Exportinghttps://www.jfrog.com/confluence/display/RTF6X/Release+Notes#ReleaseNotes-Artifactory6.18https://www.secureworks.com/research/subject/advisories