CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A potential vulnerability has been identified in the Micro Focus Dimensions CM Plugin for Jenkins. The vulnerability could be exploited to retrieve a login certificate if an authenticated user is duped into using an attacker-controlled Dimensions CM server. This vulnerability only applies when th...

5.7CVSS6.7AI score0.00316EPSS

Exploits0References1

Veracode•added 2023/07/22 9:12 p.m.•12 views

Information Disclosure

org.jenkins-ci.plugins:dimensionsscm is vulnerable to Information Disclosure. A remote authenticated attacker is able to retrieve a login certificate of a victim via tricking them into using an attacker-controlled Dimensions CM server, resulting in disclosure of sensitive information...

5.7CVSS6.5AI score0.00316EPSS

Exploits0References5Affected Software1

Github Security Blog•added 2023/07/19 6:30 p.m.•12 views

Potential leak of credentials in Micro Focus Dimensions CM Jenkins Plugin

5.7CVSS6.5AI score0.00316EPSS

Exploits0References5Affected Software1

NVD•added 2023/07/19 4:15 p.m.•20 views

CVE-2023-32262

A potential vulnerability has been identified in the Micro Focus Dimensions CM Plugin for Jenkins. The vulnerability allows attackers with Item/Configure permission to access and capture credentials they are not entitled to. See the following Jenkins security advisory for details:...

6.5CVSS5.3AI score0.00518EPSS

Exploits0References3

OSV•added 2023/07/19 4:15 p.m.•12 views

CVE-2023-32262

6.5CVSS7AI score

Exploits0References3

NVD•added 2023/07/19 4:15 p.m.•10 views

CVE-2023-32263

5.7CVSS4.4AI score0.00316EPSS

Exploits0References2

NVD•added 2023/07/19 4:15 p.m.•14 views

CVE-2023-32261

A potential vulnerability has been identified in the Micro Focus Dimensions CM Plugin for Jenkins. The vulnerability allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. See the following Jenkins security advisory for details:...

6.5CVSS5.2AI score0.00341EPSS

Exploits0References3

OSV•added 2023/07/19 4:15 p.m.•12 views

CVE-2023-32261

6.5CVSS6.7AI score

Exploits0References3

OSV•added 2023/07/19 4:15 p.m.•10 views

CVE-2023-32263

5.7CVSS6.7AI score

Exploits0References2

Prion•added 2023/07/19 4:15 p.m.•14 views

Code injection

3.5CVSS5.4AI score0.00316EPSS

Exploits0References2Affected Software1

Prion•added 2023/07/19 4:15 p.m.•10 views

Hardcoded credentials

4CVSS6.3AI score0.00518EPSS

Exploits0References3Affected Software1

Prion•added 2023/07/19 4:15 p.m.•14 views

Hardcoded credentials

4CVSS6.3AI score0.00341EPSS

Exploits0References3Affected Software1

Cvelist•added 2023/07/19 3:56 p.m.•11 views

CVE-2023-32263 Dimensions CM Plugin for Jenkins 0.8.17 â€“ 0.9.3

2.6CVSS5.6AI score0.00316EPSS

Exploits0References2

CVE•added 2023/07/19 3:56 p.m.•55 views

CVE-2023-32263

Technical details about CVE-2023-32263 are not publicly available in the supplied documents. Monitor for updates from vendors and security advisories.

5.7CVSS4.4AI score0.00316EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/07/19 3:56 p.m.•19 views

CVE-2023-32263 Dimensions CM Plugin for Jenkins 0.8.17 â€“ 0.9.3

2.6CVSS6.4AI score0.00316EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by