CVE-2024-6915

Name of the Vulnerable Software and Affected Versions JFrog Artifactory versions prior to 7.90.6 JFrog Artifactory versions prior to 7.84.20 JFrog Artifactory versions prior to 7.77.14 JFrog Artifactory versions prior to 7.71.23 JFrog Artifactory versions prior to 7.68.22 JFrog Artifactory versions prior to 7.63.22 JFrog Artifactory versions prior to 7.59.23 JFrog Artifactory versions prior to 7.55.18

Description The issue is related to errors in processing input data, which can allow a remote attacker to perform a cache poisoning attack.

Recommendations For versions prior to 7.90.6, update to version 7.90.6 or later. For versions prior to 7.84.20, update to version 7.84.20 or later. For versions prior to 7.77.14, update to version 7.77.14 or later. For versions prior to 7.71.23, update to version 7.71.23 or later. For versions prior to 7.68.22, update to version 7.68.22 or later. For versions prior to 7.63.22, update to version 7.63.22 or later. For versions prior to 7.59.23, update to version 7.59.23 or later. For versions prior to 7.55.18, update to version 7.55.18 or later.