Vulnerabilities

CVE-2023-40345

by Fred · 16/08/2023

Jenkins Delphix Plugin 3.0.2 and earlier does not set the appropriate context for credentials lookup, allowing attackers with Overall/Read permission to access and capture credentials they are not entitled to.

Date published : 2023-08-16

https://www.jenkins.io/security/advisory/2023-08-16/#SECURITY-3214%20%282%29

http://www.openwall.com/lists/oss-security/2023/08/16/3

Similar

Tags: Cybersecurity Alert