Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:59 a.m.10 views

CVE-2023-46656

Jenkins Multibranch Scan Webhook Trigger Plugin 1.0.9 and earlier uses a non-constant time comparison function when checking whether the provided and expected webhook token are equal, potentially allowing attackers to use statistical methods to obtain a valid webhook token...

5.3CVSS6.6AI score0.00557EPSS
Exploits0
NVD
NVD
added 2023/10/25 6:17 p.m.33 views

CVE-2023-46656

Jenkins Multibranch Scan Webhook Trigger Plugin 1.0.9 and earlier uses a non-constant time comparison function when checking whether the provided and expected webhook token are equal, potentially allowing attackers to use statistical methods to obtain a valid webhook token...

5.3CVSS6AI score0.00557EPSS
Exploits0References2
CVE
CVE
added 2023/10/25 1:45 p.m.70 views

CVE-2023-46656

CVE-2023-46656 affects Jenkins Multibranch Scan Webhook Trigger Plugin versions 1.0.9 and earlier. The root cause is a non-constant time comparison when verifying the webhook token, which can enable attackers to use statistical methods to determine a valid token. Public references (including Red ...

5.3CVSS5.1AI score0.00557EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/25 1:45 p.m.12 views

CVE-2023-46656

Jenkins Multibranch Scan Webhook Trigger Plugin 1.0.9 and earlier uses a non-constant time comparison function when checking whether the provided and expected webhook token are equal, potentially allowing attackers to use statistical methods to obtain a valid webhook token...

6.9AI score0.00557EPSS
Exploits0References2
Rows per page
Query Builder