CVE-2023-41935

2023-09-0613:15:10

Google

osv.dev

jenkins

azure ad

csrf

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.3%

JSON

Jenkins Azure AD Plugin 396.v86ce29279947 and earlier, except 378.380.v545b_1154b_3fb_, uses a non-constant time comparison function when checking whether the provided and expected CSRF protection nonce are equal, potentially allowing attackers to use statistical methods to obtain a valid nonce.

CPENameOperatorVersion
azure-ad-plugineq393.v03d1cfd50759
azure-ad-plugineq378.vd6e2874a_69eb_
azure-ad-plugineq392.v4e15d33fe85d
azure-ad-plugineq385.v5d9f88612dd2
azure-ad-plugineq396.v86ce29279947
azure-ad-plugineq391.v252da_e1dd39c

Name	Operator	Version
azure-ad-plugin	eq	393.v03d1cfd50759
azure-ad-plugin	eq	378.vd6e2874a_69eb_
azure-ad-plugin	eq	392.v4e15d33fe85d
azure-ad-plugin	eq	385.v5d9f88612dd2
azure-ad-plugin	eq	396.v86ce29279947
azure-ad-plugin	eq	391.v252da_e1dd39c