CVE-2023-42661

Name of the Vulnerable Software and Affected Versions JFrog Artifactory versions prior to 7.76.2

Description The issue is due to insufficient validation of artifacts, which may lead to Denial of Service (DoS) or Remote Code Execution when a specially crafted series of requests is sent by an authenticated user. This is a result of improper input validation.

Recommendations For versions prior to 7.76.2, update to version 7.76.2 or later to resolve the issue. As a temporary workaround, consider restricting access to authenticated users or implementing additional validation mechanisms for artifacts to minimize the risk of exploitation.