A Header Injection vulnerability in the JFrog platform in versions below 7.85.0 (SaaS) and 7.84.7 (Self-Hosted) may allow threat actors to take over the end user's account when clicking on a specially crafted URL sent to the victim’s user email.
{ "cpes": [ "cpe:2.3:a:jfrog:artifactory:*:*:*:*:*:*:*:*" ], "severity": "Medium" }