Vulnerabilities

CVE-2024-23905

by Fred · 24/01/2024

Jenkins Red Hat Dependency Analytics Plugin 0.7.1 and earlier programmatically disables Content-Security-Policy protection for user-generated content in workspaces, archived artifacts, etc. that Jenkins offers for download.

More information : http://www.openwall.com/lists/oss-security/2024/01/24/6

Similar

Tags: Cybersecurity Alert