Lucene search
K

6 matches found

redhatcve
redhatcve
added 2025/05/23 11:39 a.m.10 views

CVE-2025-24401

Jenkins Folder-based Authorization Strategy Plugin 217.vd5b18537403e and earlier does not verify that permissions configured to be granted are enabled, potentially allowing users formerly granted typically optional permissions, like Overall/Manage to access functionality they're no longer entitle...

6.8CVSS6.7AI score0.00302EPSS
Exploits0References1
circl
circl
added 2025/01/22 5:16 p.m.8 views

CVE-2025-24401

creationtimestamp| type| source ---|---|--- 2025-01-22 17:16:02+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdumxrnhc2r 2025-01-22 17:54:36+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113873287621870613 2025-01-22 18:54:27+00:00| seen|...

6.8CVSS5.7AI score0.00302EPSS
Exploits0References4
cve
cve
added 2025/01/22 5:2 p.m.77 views

CVE-2025-24401

CVE-2025-24401 affects the Jenkins Folder-based Authorization Strategy Plugin (versions 217.vd5b_18537403e and earlier). The root cause is that the plugin does not verify that permissions configured to be granted are enabled, potentially letting users who were previously granted optional permissi...

6.8CVSS6.8AI score0.00302EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2025/01/22 5:2 p.m.27 views

CVE-2025-24401

Jenkins Folder-based Authorization Strategy Plugin 217.vd5b18537403e and earlier does not verify that permissions configured to be granted are enabled, potentially allowing users formerly granted typically optional permissions, like Overall/Manage to access functionality they're no longer entitle...

0.00302EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/01/22 5:2 p.m.10 views

CVE-2025-24401

Jenkins Folder-based Authorization Strategy Plugin 217.vd5b18537403e and earlier does not verify that permissions configured to be granted are enabled, potentially allowing users formerly granted typically optional permissions, like Overall/Manage to access functionality they're no longer entitle...

6.8AI score0.00302EPSS
Exploits0References1
alpinelinux
alpinelinux
added 2025/01/22 5:2 p.m.4 views

CVE-2025-24401

Jenkins Folder-based Authorization Strategy Plugin 217.vd5b18537403e and earlier does not verify that permissions configured to be granted are enabled, potentially allowing users formerly granted typically optional permissions, like Overall/Manage to access functionality they're no longer entitle...

6.8CVSS6.9AI score0.00302EPSS
Exploits0References1
Rows per page
Query Builder