Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:55 a.m.11 views

CVE-2023-24435

A missing permission check in Jenkins GitHub Pull Request Builder Plugin 1.42.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS6.4AI score0.00821EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2023/01/26 9:30 p.m.4 views

org.jenkins-ci.plugins:salesforce-migration-assistant-plugin (=2.2.0) potentially affected by CVE-2023-24435 via org.jenkins-ci.plugins:ghprb (=1.31.4)

org.jenkins-ci.plugins:ghprb MAVEN version =1.31.4 is affected by a known vulnerability. The following packages have a transitive dependency on org.jenkins-ci.plugins:ghprb and may be impacted: - org.jenkins-ci.plugins:salesforce-migration-assistant-plugin =2.2.0 Source cves: CVE-2023-24435 Sourc...

6.5CVSS6.5AI score0.00821EPSS
Exploits0
OSV
OSV
added 2023/01/26 9:18 p.m.21 views

CVE-2023-24435

A missing permission check in Jenkins GitHub Pull Request Builder Plugin 1.42.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS6.4AI score
Exploits0References1
NVD
NVD
added 2023/01/26 9:18 p.m.39 views

CVE-2023-24435

A missing permission check in Jenkins GitHub Pull Request Builder Plugin 1.42.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5CVSS6.4AI score0.00821EPSS
Exploits0References1
CVE
CVE
added 2023/01/24 12:0 a.m.87 views

CVE-2023-24435

CVE-2023-24435 concerns the Jenkins GitHub Pull Request Builder Plugin (versions

6.5CVSS6.3AI score0.00821EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/24 12:0 a.m.8 views

CVE-2023-24435

A missing permission check in Jenkins GitHub Pull Request Builder Plugin 1.42.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.8AI score0.00821EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/24 12:0 a.m.41 views

CVE-2023-24435

A missing permission check in Jenkins GitHub Pull Request Builder Plugin 1.42.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

6.5AI score0.00821EPSS
Exploits0References1
Rows per page
Query Builder