Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:40 p.m.10 views

CVE-2023-43502

A cross-site request forgery CSRF vulnerability in Jenkins Build Failure Analyzer Plugin 2.4.1 and earlier allows attackers to delete Failure Causes...

4.3CVSS6.7AI score0.00339EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/09/25 12:0 a.m.38 views

Jenkins Plugins Multiple Vulnerabilities (2023-09-20)

According to its self-reported version number, the version of Jenkins plugins running on the remote web server is affected by multiple vulnerabilities: - Jenkins Build Failure Analyzer Plugin 2.4.1 and earlier does not escape Failure Cause names in build logs, resulting in a stored cross-site...

8.8CVSS5.8AI score0.00521EPSS
Exploits0References5
Circl
Circl
added 2023/09/20 8:30 p.m.6 views

CVE-2023-43502

creationtimestamp| type| source ---|---|--- 2023-09-20 20:30:25+00:00| seen| https://t.me/cibsecurity/70811...

4.3CVSS4.6AI score0.00339EPSS
Exploits0References1
OSV
OSV
added 2023/09/20 5:15 p.m.27 views

CVE-2023-43502

A cross-site request forgery CSRF vulnerability in Jenkins Build Failure Analyzer Plugin 2.4.1 and earlier allows attackers to delete Failure Causes...

4.3CVSS7AI score
Exploits0References2
CVE
CVE
added 2023/09/20 4:6 p.m.67 views

CVE-2023-43502

The CVE-2023-43502 entry concerns a CSRF vulnerability in the Jenkins Build Failure Analyzer Plugin (versions 2.4.1 and earlier). The underlying issue is that the plugin did not require POST for an HTTP endpoint, allowing attackers to delete Failure Causes by crafting a request that is executed i...

4.3CVSS4.5AI score0.00339EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/09/20 4:6 p.m.29 views

CVE-2023-43502

A cross-site request forgery CSRF vulnerability in Jenkins Build Failure Analyzer Plugin 2.4.1 and earlier allows attackers to delete Failure Causes...

5.3AI score0.00339EPSS
Exploits0References2
Rows per page
Query Builder