Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/03 12:0 a.m.18 views

Jenkins plugins Multiple Vulnerabilities (2024-10-02)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - Jenkins Credentials Plugin 1380.va435002fa924 and earlier, except 1371.1373.v4ebfab7161e9, does not redact encrypted values of credentials...

8.1CVSS5.6AI score0.00636EPSS
Exploits0References4
Circl
Circl
added 2024/10/02 6:52 p.m.5 views

CVE-2024-47807

creationtimestamp| type| source ---|---|--- 2024-10-02 18:52:20+00:00| seen| https://t.me/cvedetector/6842...

8.1CVSS4.8AI score0.00636EPSS
Exploits0References1
NVD
NVD
added 2024/10/02 4:15 p.m.18 views

CVE-2024-47807

Jenkins OpenId Connect Authentication Plugin 4.354.v321ce67a1de8 and earlier does not check the iss Issuer claim of an ID Token, allowing attackers to subvert the authentication flow, potentially gaining administrator access to Jenkins...

8.1CVSS0.00636EPSS
Exploits0References1
OSV
OSV
added 2024/10/02 4:15 p.m.6 views

CVE-2024-47807

Jenkins OpenId Connect Authentication Plugin 4.354.v321ce67a1de8 and earlier does not check the iss Issuer claim of an ID Token, allowing attackers to subvert the authentication flow, potentially gaining administrator access to Jenkins...

8.1CVSS6.9AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/02 3:35 p.m.14 views

CVE-2024-47807

Jenkins OpenId Connect Authentication Plugin 4.354.v321ce67a1de8 and earlier does not check the iss Issuer claim of an ID Token, allowing attackers to subvert the authentication flow, potentially gaining administrator access to Jenkins...

7.3AI score0.00636EPSS
Exploits0References1
Rows per page
Query Builder