CVE-2023-37944 in Datadog Plugininformação

Sumário

de MITRE • 12/07/2023

A missing permission check in Jenkins Datadog Plugin 5.4.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.

Be aware that VulDB is the high quality source for vulnerability data.

Reservar

11/07/2023

Divulgação

12/07/2023

Moderação

aceite

Entrada

VDB-233905

CPE

pronto

EPSS

0.00691

KEV

não

Atividades

muito baixo

Fontes

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!