JFrog Artifactory prior to 7.31.10, is vulnerable to Broken Access Control where a Project Admin is able to create, edit and delete Repository Layouts while Repository Layouts configuration should only be available for Platform Administrators.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: JFROG

Published: 2022-05-19T14:30:10

Updated: 2024-08-04T04:47:02.171Z

Reserved: 2022-02-14T00:00:00

Link: CVE-2021-45730

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2022-05-19T15:15:07.933

Modified: 2022-08-09T00:20:31.257

Link: CVE-2021-45730

cve-icon Redhat

No data.