Lucene search
JenkinsVULNRICHMENT:CVE-2023-41930HistorySep 06, 2023 - 12:08 p.m.
CVE-2023-41930
2023-09-0612:08:52
jenkins
github.com
jenkins
configuration
history
plugin
manipulated
cve-2023-41930
Jenkins Job Configuration History Plugin 1227.v7a_79fc4dc01f and earlier does not restrict the ‘name’ query parameter when rendering a history entry, allowing attackers to have Jenkins render a manipulated configuration history that was not created by the plugin.
Related
cvelist
cvelist
CVE-2023-41930
2023-09-06 12:08:52
github
github
Path traversal in Jenkins Job Configuration History Plugin
2023-09-06 15:30:26
nvd
nvd
CVE-2023-41930
2023-09-06 13:15:09
cve
cve
CVE-2023-41930
2023-09-06 13:15:09
prion
prion
Design/Logic Flaw
2023-09-06 13:15:00
osv
osv
Path traversal in Jenkins Job Configuration History Plugin
2023-09-06 15:30:26
alpinelinux
alpinelinux
CVE-2023-41930
2023-09-06 13:15:09
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2023-09-06)
2023-09-07 00:00:00
AI Score
6.6
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-41930