Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistJenkinsCVELIST:CVE-2023-24426
HistoryJan 24, 2023 - 12:00 a.m.

CVE-2023-24426

2023-01-2400:00:00
jenkins
www.cve.org
jenkins
azure ad
plugin
vulnerability
login session

8.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.2%

JSON

Jenkins Azure AD Plugin 303.va_91ef20ee49f and earlier does not invalidate the previous session on login.

CNA Affected

[
  {
    "product": "Jenkins Azure AD Plugin",
    "vendor": "Jenkins Project",
    "versions": [
      {
        "lessThanOrEqual": "303.va_91ef20ee49f",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

osv 2
prion 1
github 1
cve 1
alpinelinux 1
nvd 1
nessus 2
osv
osv
Insufficient Session Expiration in Jenkins Azure AD Plugin
2023-01-26 21:30:18
CVE-2023-24426
2023-01-26 21:18:16
prion
prion
Information disclosure
2023-01-26 21:18:00
github
github
Insufficient Session Expiration in Jenkins Azure AD Plugin
2023-01-26 21:30:18
cve
cve
CVE-2023-24426
2023-01-26 21:18:16
alpinelinux
alpinelinux
CVE-2023-24426
2023-01-26 21:18:16
nvd
nvd
CVE-2023-24426
2023-01-26 21:18:16
nessus
nessus
Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.7 Multiple Vulnerabilities (CloudBees Security Advisory 2023-01-24)
2023-01-24 00:00:00
Jenkins plugins Multiple Vulnerabilities (2023-01-24)
2023-02-27 00:00:00

8.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.2%

JSON
Related for CVELIST:CVE-2023-24426
osv2prion1github1cve1alpinelinux1nvd1nessus2