JFrog Artifactory prior to version 7.29.8 and 6.23.38is vulnerable to Reflected Cross-Site Scripting (XSS) through one of the XHR parameters in Users REST API endpoint.
CVSSv3.1 Score: 6.1AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N
Required Configuration for Exposure
This vulnerability affects JFrog Artifactory deployments.
This issue requires an attacker to have authenticated access to JFrog Artifactory as Administrator
How to fix
Affected Cloud environments have already been fortified with a fixed version. No action is required for cloud instances.
Self Hosted Environments
To fix this issue, there is required action.
Upgrade your version of Artifactory or Edge to one of the versions listed below:
Workarounds and Mitigations
There aren’t any suggested workarounds to this issue besides upgrading to a fixed version.
CWE- 79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
This issue was discovered and reported by Maxime Escourbiac and Maxence Schmitt at Michelin CERT.
We Are Here For Your Questions (JFrog Support Team)
If you have questions or concerns regarding this advisory, please raise a support request at JFrog support portal.