Lucene search

CVE-2023-24451

🗓️ 26 Jan 2023 21:18:18Reported by [email protected]Type

A missing permission check in Jenkins Cisco Spark Notifier Plugin 1.1.1 and earlier allows attackers to enumerate stored credentials

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
CVE	CVE-2023-24451	26 Jan 202321:18	–	cve
Prion	Information disclosure	26 Jan 202321:18	–	prion
Cvelist	CVE-2023-24451	24 Jan 202300:00	–	cvelist
OSV	Cisco Spark Notifier Jenkins Plugin contains Missing Authorization	26 Jan 202321:30	–	osv
Github Security Blog	Cisco Spark Notifier Jenkins Plugin contains Missing Authorization	26 Jan 202321:30	–	github
Tenable Nessus	Jenkins plugins Multiple Vulnerabilities (2023-01-24)	27 Feb 202300:00	–	nessus
Tenable Nessus	Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.7 Multiple Vulnerabilities (CloudBees Security Advisory 2023-01-24)	24 Jan 202300:00	–	nessus

Nvd

Node

jenkins cisco_sparkRange≤1.1.1jenkins

Source	Link
jenkins	www.jenkins.io/security/advisory/2023-01-24/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Jan 2023 21:18Current

4.5Medium risk

Vulners AI Score4.5

CVSS34.3

EPSS0.00176

CWE-862