CVE-2023-37953 in mabl Plugininformazioni

Riassunto

di MITRE • 12/07/2023

A missing permission check in Jenkins mabl Plugin 0.0.46 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Prenotare

11/07/2023

Divulgazione

12/07/2023

Moderazione

accettato

CPE

pronto

EPSS

0.00555

KEV

no

Attività

molto basso

Fonti

Want to know what is going to be exploited?

We predict KEV entries!