CVE-2023-49674 in NeuVector Vulnerability Scanner Plugin
Sumário
de MITRE • 29/11/2023
A missing permission check in Jenkins NeuVector Vulnerability Scanner Plugin 1.22 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified hostname and port using attacker-specified username and password.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.