Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-9963-GMH8-VVM6
HistoryJan 26, 2023 - 9:30 p.m.

Session fixation vulnerability in Jenkins Keycloak Authentication Plugin

2023-01-2621:30:18
CWE-384
GitHub Advisory Database
github.com
18

0.002 Low

EPSS

Percentile

53.8%

JSON

Jenkins Keycloak Authentication Plugin 2.3.0 and earlier does not invalidate the previous session on login.

CPENameOperatorVersion
org.jenkins-ci.plugins:keycloakle2.3.0

Related

prion 1
cve 1
osv 1
cvelist 1
nessus 2
prion
prion
Authentication flaw
2023-01-26 21:18:00
cve
cve
CVE-2023-24456
2023-01-26 21:18:18
osv
osv
Session fixation vulnerability in Jenkins Keycloak Authentication Plugin
2023-01-26 21:30:18
cvelist
cvelist
CVE-2023-24456
2023-01-24 00:00:00
nessus
nessus
Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.7 Multiple Vulnerabilities (CloudBees Security Advisory 2023-01-24)
2023-01-24 00:00:00
Jenkins plugins Multiple Vulnerabilities (2023-01-24)
2023-02-27 00:00:00

0.002 Low

EPSS

Percentile

53.8%

JSON
Related for GHSA-9963-GMH8-VVM6
prion1cve1osv1cvelist1nessus2