Lucene search

PRIOn knowledge basePRION:CVE-2023-49654

HistoryNov 29, 2023 - 2:15 p.m.

Information disclosure

2023-11-2914:15:00

PRIOn knowledge base

www.prio-n.com

information disclosure

permission checks

jenkins

matlab plugin

xml file

vulnerability

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.3%

JSON

Missing permission checks in Jenkins MATLAB Plugin 2.11.0 and earlier allow attackers to have Jenkins parse an XML file from the Jenkins controller file system.

CPENameOperatorVersion
matlablt2.11.1

CPE	Name	Operator	Version
	matlab	lt	2.11.1

References

www.openwall.com/lists/oss-security/2023/11/29/1

www.jenkins.io/security/advisory/2023-11-29/