CVE-2023-49673
CVSS v3.1
8.8 (High)
EPSS
0.06 % (25th)
Affected Products
4
Advisories
2
NVD Status
Modified
A cross-site request forgery (CSRF) vulnerability in Jenkins NeuVector Vulnerability Scanner Plugin 1.22 and earlier allows attackers to connect to an attacker-specified hostname and port using attacker-specified username and password.
Weaknesses
- CWE-352
- Cross-Site Request Forgery (CSRF)
- CVE Status
- PUBLISHED
- NVD Status
- Modified
- CNA
- Jenkins Project
- Published Date
-
2023-11-29 14:15:07
(9 months ago) - Updated Date
-
2024-08-01 13:45:13
(6 weeks ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...