Lucene search
JenkinsVULNRICHMENT:CVE-2023-43501HistorySep 20, 2023 - 4:06 p.m.
CVE-2023-43501
2023-09-2016:06:12
jenkins
github.com
jenkins
build failure analyzer
unauthorizedconnections
AI Score
6.6
Confidence
High
EPSS
0.001
Percentile
21.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
A missing permission check in Jenkins Build Failure Analyzer Plugin 2.4.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified hostname and port using attacker-specified username and password.
Related
prion
prion
Default credentials
2023-09-20 17:15:00
cvelist
cvelist
CVE-2023-43501
2023-09-20 16:06:12
veracode
veracode
Missing Authorization
2023-09-25 10:49:43
osv
osv
CVE-2023-43501
2023-09-20 17:15:12
Jenkins Build Failure Analyzer Plugin missing permission check
2023-09-20 18:30:21
nvd
nvd
CVE-2023-43501
2023-09-20 17:15:12
cve
cve
CVE-2023-43501
2023-09-20 17:15:12
github
github
Jenkins Build Failure Analyzer Plugin missing permission check
2023-09-20 18:30:21
nessus
nessus
Jenkins Plugins Multiple Vulnerabilities (2023-09-20)
2023-09-25 00:00:00
AI Score
6.6
Confidence
High
EPSS
0.001
Percentile
21.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-43501