Lucene search

K
prionPRIOn knowledge basePRION:CVE-2023-49653
HistoryNov 29, 2023 - 2:15 p.m.

Design/Logic Flaw

2023-11-2914:15:00
PRIOn knowledge base
www.prio-n.com
6
jenkins
jira
plugin
security
vulnerability
credentials

6.9 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.2%

Jenkins Jira Plugin 3.11 and earlier does not set the appropriate context for credentials lookup, allowing attackers with Item/Configure permission to access and capture credentials they are not entitled to.

CPENameOperatorVersion
jirale3.11

6.9 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.2%

Related for PRION:CVE-2023-49653