A missing permission check in Jenkins Azure Credentials Plugin allows attackers to connect to an attacker-specified web serve
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
![]() | Information disclosure | 15 Feb 202314:15 | – | prion |
![]() | Missing Authorization in Jenkins Azure Credentials Plugin | 15 Feb 202315:30 | – | github |
![]() | Missing Authorization in Jenkins Azure Credentials Plugin | 15 Feb 202315:30 | – | osv |
![]() | CVE-2023-25768 | 15 Feb 202314:15 | – | alpinelinux |
![]() | CVE-2023-25768 | 15 Feb 202300:00 | – | cvelist |
![]() | CVE-2023-25768 | 15 Feb 202314:15 | – | nvd |
![]() | Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.9 Multiple Vulnerabilities (CloudBees Security Advisory 2023-02-15) | 15 Feb 202300:00 | – | nessus |
[
{
"product": "Jenkins Azure Credentials Plugin",
"vendor": "Jenkins Project",
"versions": [
{
"lessThanOrEqual": "253.v887e0f9e898b",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]
Source | Link |
---|---|
openwall | www.openwall.com/lists/oss-security/2023/02/15/4 |
jenkins | www.jenkins.io/security/advisory/2023-02-15/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo