CVE-2023-37953 in mabl Plugininformação

Sumário

de MITRE • 12/07/2023

A missing permission check in Jenkins mabl Plugin 0.0.46 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservar

11/07/2023

Divulgação

12/07/2023

Moderação

aceite

Entrada

VDB-233918

CPE

pronto

EPSS

0.00555

KEV

não

Atividades

muito baixo

Fontes

Might our Artificial Intelligence support you?

Check our Alexa App!