What is CVE-2019-9733?

CVE-2019-9733 is a vulnerability in N/a. Published 2019-04-11.

Is CVE-2019-9733 known to be exploited?

7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2019-9733

An issue was discovered in JFrog Artifactory 6.7.3. By default, the access-admin account is used to reset the password of the admin account in case an administrator gets locked out from the Artifactory console. This is only allowable from…

EPSS: 0.917 (99.7th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

merlinepedra25/nuclei-templates
sobinge/nuclei-templates
cyb3r-w0lf/nuclei-template-collection
d4n-sec/d4n-sec.github.io
merlinepedra/nuclei-templates
20142995/nuclei-templates
ARPSyndicate/kenzer-templates

References

packetstormsecurity.com/files/152172/JFrog-Artifactory-Administrator-Authentica… (x_refsource_MISC)
www.ciphertechs.com/jfrog-artifactory-advisory/ (x_refsource_CONFIRM)
www.jfrog.com/confluence/display/RTF/Release+Notes (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2019-9733?: CVE-2019-9733 is a vulnerability in N/a. Published 2019-04-11.
Is CVE-2019-9733 known to be exploited?: 7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.