CVE-2023-37945 in SAML Single Sign On Plugin
Riassunto
di MITRE • 12/07/2023
A missing permission check in Jenkins SAML Single Sign On(SSO) Plugin 2.1.0 through 2.3.0 (both inclusive) allows attackers with Overall/Read permission to download a string representation of the current security realm.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.