Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-4302
HistoryAug 21, 2023 - 11:15 p.m.

Design/Logic Flaw

2023-08-2123:15:00
PRIOn knowledge base
www.prio-n.com
3
design flaw
logic flaw
jenkins fortify plugin
permission check
vulnerability
credentials capture
nvd

4.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.3%

JSON

A missing permission check in Jenkins Fortify Plugin 22.1.38 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.

CPENameOperatorVersion
fortifylt22.2.39

Related

alpinelinux 1
osv 1
nvd 1
cve 1
cvelist 1
github 1
nessus 1
alpinelinux
alpinelinux
CVE-2023-4302
2023-08-21 23:15:09
osv
osv
Jenkins Fortify Plugin missing permission check
2023-08-22 00:31:10
nvd
nvd
CVE-2023-4302
2023-08-21 23:15:09
cve
cve
CVE-2023-4302
2023-08-21 23:15:09
cvelist
cvelist
CVE-2023-4302 Missing permission checks in Fortify Plugin allow capturing credentials
2023-08-21 22:34:30
github
github
Jenkins Fortify Plugin missing permission check
2023-08-22 00:31:10
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2023-08-16)
2023-08-21 00:00:00

4.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.3%

JSON
Related for PRION:CVE-2023-4302
alpinelinux1osv1nvd1cve1cvelist1github1nessus1