Lucene search
+L

5 matches found

NVD
NVD
added 2023/01/26 9:18 p.m.34 views

CVE-2023-24446

A cross-site request forgery CSRF vulnerability in Jenkins OpenID Plugin 2.4 and earlier allows attackers to trick users into logging in to the attacker's account...

8.8CVSS8.7AI score0.00556EPSS
Exploits0References1
OSV
OSV
added 2023/01/26 9:18 p.m.18 views

CVE-2023-24446

A cross-site request forgery CSRF vulnerability in Jenkins OpenID Plugin 2.4 and earlier allows attackers to trick users into logging in to the attacker's account...

8.8CVSS8.7AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/01/24 12:0 a.m.8 views

CVE-2023-24446

A cross-site request forgery CSRF vulnerability in Jenkins OpenID Plugin 2.4 and earlier allows attackers to trick users into logging in to the attacker's account...

7AI score0.00556EPSS
Exploits0References1
CVE
CVE
added 2023/01/24 12:0 a.m.83 views

CVE-2023-24446

CVE-2023-24446 is a CSRF vulnerability in the Jenkins OpenID Plugin (versions 2.4 and earlier) that lets an attacker trick a logged-in user into authenticating to the attacker’s account. The issue arises in the OpenID login flow (login request handling) where existing sessions aren’t protected ad...

8.8CVSS8.5AI score0.00556EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/01/24 12:0 a.m.35 views

CVE-2023-24446

A cross-site request forgery CSRF vulnerability in Jenkins OpenID Plugin 2.4 and earlier allows attackers to trick users into logging in to the attacker's account...

8.9AI score0.00556EPSS
Exploits0References1
Rows per page
Query Builder