** UNSUPPORTED WHEN ASSIGNED ** Incorrect Authorization vulnerability in Apache Archiva.
Apache Archiva has a setting to disable user registration, however this restriction can be bypassed. As Apache Archiva has been retired, we do not expect to release a version of Apache Archiva that fixes this issue. You are recommended to look into migrating to a different solution, or isolate your instance from any untrusted users.
NOTE: This vulnerability only affects products that are no longer supported by the maintainer
CVSS
No CVSS.
References
Configurations
No configuration.
History
01 May 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Mar 2024, 02:52
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
01 Mar 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-03-01 16:15
Updated : 2024-05-01 17:15
NVD link : CVE-2024-27138
Mitre link : CVE-2024-27138
CVE.ORG link : CVE-2024-27138
JSON object : View
Products Affected
No product.
CWE
CWE-863
Incorrect Authorization