Bearychat Security Vulnerabilities and Issues — Bearychat CVE List

Lucene search

JenkinsBearychat

2 matches found

CVE•added 2023/01/26 9:18 p.m.•63 views

CVE-2023-24459

A missing permission check in Jenkins BearyChat Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL.

6.5CVSS6.2AI score0.00124EPSS

CVE•added 2023/01/26 9:18 p.m.•53 views

CVE-2023-24458

A cross-site request forgery (CSRF) vulnerability in Jenkins BearyChat Plugin 3.0.2 and earlier allows attackers to connect to an attacker-specified URL.

8.8CVSS8.5AI score0.00254EPSS