Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Session Fixation

🗓️ 16 Dec 2024 12:38:30Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode🔗 sca.analysiscenter.veracode.com👁 8 Views

Vulnerability in oic-auth plugin allows session fixation attack through invalidated sessions.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
AlpineLinux		CVE-2024-52553
13 Nov 202420:53
alpinelinux
Circl		CVE-2024-52553
13 Nov 202421:10
circl
CNNVD		Jenkins plugin OpenId Connect Authentication 代码问题漏洞
13 Nov 202400:00
cnnvd
CVE		CVE-2024-52553
13 Nov 202420:53
cve
Cvelist		CVE-2024-52553
13 Nov 202420:53
cvelist
Github Security Blog		Session fixation vulnerability in Jenkins OpenId Connect Authentication Plugin
13 Nov 202421:30
github
Tenable Nessus		Jenkins plugins Multiple Vulnerabilities (2024-11-13)
13 Nov 202400:00
nessus
NVD		CVE-2024-52553
13 Nov 202421:15
nvd
OSV		GHSA-H23J-73WW-7594 Session fixation vulnerability in Jenkins OpenId Connect Authentication Plugin
13 Nov 202421:30
osv
Positive Technologies		PT-2024-35375 · Jenkins · Jenkins Openid Connect Authentication Plugin +1
13 Nov 202400:00
ptsecurity
Rows per page
Vulners
Node
jenkins-cioic-authRange4.223.v503b_9a_75a_8a_f4.418.vccc7061f5b_6djava
OR
jenkins-cioic-authMatch1.0java
OR
jenkins-cioic-authMatch1.1java
OR
jenkins-cioic-authMatch1.2java
OR
jenkins-cioic-authMatch1.3java
OR
jenkins-cioic-authMatch1.4java
OR
jenkins-cioic-authMatch1.5java
OR
jenkins-cioic-authMatch1.6java
OR
jenkins-cioic-authMatch1.7java
OR
jenkins-cioic-authMatch1.8java
OR
jenkins-cioic-authMatch2.0.0java
OR
jenkins-cioic-authMatch2.1java
OR
jenkins-cioic-authMatch2.2java
OR
jenkins-cioic-authMatch2.3java
OR
jenkins-cioic-authMatch2.4java
OR
jenkins-cioic-authMatch2.5java
OR
jenkins-cioic-authMatch2.6java
OR
jenkins-cioic-authMatch3.0java
OR
jenkins-cioic-authMatch4.220.v22331f08e6a_3java
OR
jenkins-cioic-authMatch4.223.v503b_9a_75a_8a_fjava
OR
jenkins-cioic-authMatch4.224.v62720cfa_026ejava
OR
jenkins-cioic-authMatch4.225.v03326773b_44bjava
OR
jenkins-cioic-authMatch4.227.v36610663f760java
OR
jenkins-cioic-authMatch4.228.v0c3e8682ff1fjava
OR
jenkins-cioic-authMatch4.229.vf736b_fec02f4java
OR
jenkins-cioic-authMatch4.236.v4124503b_a_f88java
OR
jenkins-cioic-authMatch4.238.v0021f710b_b_f4java
OR
jenkins-cioic-authMatch4.239.v325750a_96f3bjava
OR
jenkins-cioic-authMatch4.250.v5a_d993226437java
OR
jenkins-cioic-authMatch4.257.v5360e8489e8bjava
OR
jenkins-cioic-authMatch4.269.va_7526f34f306java
OR
jenkins-cioic-authMatch4.279.vca_c1e2fdd24bjava
OR
jenkins-cioic-authMatch4.284.v0cc21de03d37java
OR
jenkins-cioic-authMatch4.290.v6f5e8da_e98b_2java
OR
jenkins-cioic-authMatch4.297.vcddb_d8a_e4694java
OR
jenkins-cioic-authMatch4.299.v5ca_eb_6a_f3e6djava
OR
jenkins-cioic-authMatch4.303.v84089a_708ea_7java
OR
jenkins-cioic-authMatch4.320.v23537cb_a_b_5c6java
OR
jenkins-cioic-authMatch4.324.vfd49d010926bjava
OR
jenkins-cioic-authMatch4.329.v994d3f265d68java
OR
jenkins-cioic-authMatch4.330.v6fdfc07513e3java
OR
jenkins-cioic-authMatch4.331.vd925b_f76f3a_cjava
OR
jenkins-cioic-authMatch4.340.ve70636c6590ejava
OR
jenkins-cioic-authMatch4.346.v10401f543622java
OR
jenkins-cioic-authMatch4.350.v347c3b_8b_9d95java
OR
jenkins-cioic-authMatch4.354.v321ce67a_1de8java
OR
jenkins-cioic-authMatch4.355.v3a_fb_fca_b_96d4java
OR
jenkins-cioic-authMatch4.371.vc7c0c06e8a_f5java
OR
jenkins-cioic-authMatch4.388.v4f73328eb_d2cjava
OR
jenkins-cioic-authMatch4.409.ve864b_f48b_0f3java
OR
jenkins-cioic-authMatch4.411.v990b_9d36e74ejava

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
13 Dec 2025 04:54Current
6.7Medium risk
Vulners AI Score6.7
CVSS 3.18.8
EPSS0.00374
SSVC
session fixationoic-auth pluginsession invalidationsecurity vulnerabilitysoftware attack
8