CVE-2023-3414
CVSS v3.1
6.5 (Medium)
EPSS
0.06 % (28th)
Affected Products
1
Advisories
2
A cross-site request forgery vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for ServiceNow DevOps on your Jenkins server. No changes are required on your instances of the Now Platform.
Weaknesses
- CWE-352
- Cross-Site Request Forgery (CSRF)
- CVE Status
- PUBLISHED
- CNA
- ServiceNow
- Published Date
-
2023-07-26 19:15:09
(14 months ago) - Updated Date
-
2023-08-01 20:36:18
(13 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...