Azure Credentials Security Vulnerabilities and Issues — Azure Credentials CVE List

Lucene search

JenkinsAzure Credentials

3 matches found

cve•added 2023/02/15 2:15 p.m.•82 views

CVE-2023-25767

A cross-site request forgery (CSRF) vulnerability in Jenkins Azure Credentials Plugin 253.v887e0f9e898b and earlier allows attackers to connect to an attacker-specified web server.

8.8CVSS8.6AI score0.00064EPSS

cve•added 2023/02/15 2:15 p.m.•80 views

CVE-2023-25768

A missing permission check in Jenkins Azure Credentials Plugin 253.v887e0f9e898b and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server.

6.5CVSS6.3AI score0.0005EPSS

cve•added 2023/02/15 2:15 p.m.•65 views

CVE-2023-25766

A missing permission check in Jenkins Azure Credentials Plugin 253.v887e0f9e898b and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.

4.3CVSS4.4AI score0.00074EPSS