Lucene search
JenkinsVULNRICHMENT:CVE-2024-28162HistoryMar 06, 2024 - 5:02 p.m.
CVE-2024-28162
2024-03-0617:02:02
jenkins
github.com
1
jenkins
delphix
plugin
ssl/tls
validation
issue
cve-2024-28162
In Jenkins Delphix Plugin 3.0.1 through 3.1.0 (both inclusive) a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower (DCT) connections fails to take effect until Jenkins is restarted when switching from disabled validation to enabled validation.
Related
prion
prion
Input validation
2024-03-06 17:15:00
github
github
Jenkins Delphix Plugin has improper SSL/TLS certificate validation
2024-03-06 18:30:39
nvd
nvd
CVE-2024-28162
2024-03-06 17:15:11
cve
cve
CVE-2024-28162
2024-03-06 17:15:11
osv
osv
Jenkins Delphix Plugin has improper SSL/TLS certificate validation
2024-03-06 18:30:39
cvelist
cvelist
CVE-2024-28162
2024-03-06 17:02:02
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2024-03-06)
2024-03-07 00:00:00
AI Score
6.7
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-28162