Lucene search
JenkinsCVELIST:CVE-2023-32978HistoryMay 16, 2023 - 3:59 p.m.
CVE-2023-32978
2023-05-1615:59:59
jenkins
www.cve.org
jenkins
ldap plugin
csrf
vulnerability
unauthorized access
ldap server
A cross-site request forgery (CSRF) vulnerability in Jenkins LDAP Plugin allows attackers to connect to an attacker-specified LDAP server using attacker-specified credentials.
CNA Affected
[
{
"defaultStatus": "affected",
"product": "Jenkins LDAP Plugin",
"vendor": "Jenkins Project",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "676.vfa_64cf6b_b_002",
"versionType": "maven"
},
{
"lessThan": "671.*",
"status": "unaffected",
"version": "671.673.vc045dcdd856b_",
"versionType": "maven"
},
{
"lessThan": "2.10.*",
"status": "unaffected",
"version": "2.10.1",
"versionType": "maven"
}
]
}
]Related
nvd
nvd
CVE-2023-32978
2023-05-16 16:15:10
osv
osv
Jenkins LDAP Plugin vulnerable to Cross-Site Request Forgery
2023-05-16 18:30:16
cve
cve
CVE-2023-32978
2023-05-16 16:15:10
alpinelinux
alpinelinux
CVE-2023-32978
2023-05-16 16:15:10
prion
prion
Cross site request forgery (csrf)
2023-05-16 16:15:00
github
github
Jenkins LDAP Plugin vulnerable to Cross-Site Request Forgery
2023-05-16 18:30:16
