CVE-2025-14830 in Artifactory
Summary
by MITRE • 01/04/2026
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in JFrog Artifactory (Workers) allows Cross-Site Scripting (XSS).This issue affects Artifactory (Workers): from >=7.94.0 through <7.117.10.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Analysis
by VulDB Data Team • 01/05/2026
The vulnerability identified as CVE-2025-14830 represents a critical cross-site scripting flaw in JFrog Artifactory Workers component that stems from improper input neutralization during web page generation processes. This weakness enables malicious actors to inject arbitrary JavaScript code into web interfaces, potentially compromising user sessions and data integrity. The vulnerability specifically impacts versions of Artifactory Workers ranging from version 7.94.0 through the vulnerable range below 7.117.10, creating a substantial attack surface for organizations utilizing these software components. The flaw resides in the web application's failure to properly sanitize user-supplied input before incorporating it into dynamically generated web content, creating an avenue for persistent XSS attacks that can persist across user sessions and potentially escalate to more severe security breaches.
The technical implementation of this vulnerability demonstrates a classic XSS vector where user-controllable data enters the application through input fields or API endpoints without adequate validation or sanitization mechanisms. When Artifactory Workers processes this unvalidated input during web page generation, the malicious script gets embedded directly into HTML responses served to users, allowing attackers to execute arbitrary code within the victim's browser context. This type of vulnerability maps directly to CWE-79, which specifically addresses Cross-site Scripting flaws in web applications, and aligns with ATT&CK technique T1566.001 for initial access through spearphishing attachments or links that exploit such vulnerabilities. The flaw typically manifests when users interact with compromised web interfaces, potentially leading to session hijacking, credential theft, or data exfiltration from authenticated user sessions within the Artifactory environment.
The operational impact of this vulnerability extends beyond simple script execution, as it can enable attackers to establish persistent footholds within organizational artifact repositories and supply chain management systems. Artifactory serves as a critical component in software development workflows, storing and managing binary artifacts, dependencies, and build outputs that are essential for continuous integration and deployment processes. An attacker exploiting this XSS vulnerability could potentially manipulate build processes, inject malicious code into artifacts, or gain unauthorized access to sensitive repository contents. The attack surface becomes particularly concerning when considering that Artifactory Workers handle various administrative functions and user interactions, making this vulnerability a potential gateway for broader system compromise. Organizations relying on Artifactory for their software supply chain operations face significant risk of supply chain attacks that could affect downstream applications and systems.
Mitigation strategies for CVE-2025-14830 must prioritize immediate remediation through the application of vendor patches or updates to versions beyond 7.117.10 where the vulnerability has been addressed. Organizations should implement comprehensive input validation and output encoding mechanisms across all user-facing interfaces within Artifactory Workers to prevent malicious script injection. Network segmentation and access controls should be strengthened to limit exposure of the vulnerable components, while regular security assessments and penetration testing should be conducted to identify similar vulnerabilities in related systems. Security monitoring should be enhanced to detect anomalous user behavior patterns that might indicate exploitation attempts, and incident response procedures should be updated to address potential XSS-related security breaches. Additionally, organizations should consider implementing Content Security Policy headers and other browser-based protections to provide defense-in-depth against potential exploitation attempts, while maintaining regular vulnerability scanning and patch management processes to prevent similar issues from emerging in other components of their software supply chain infrastructure.