Published on: Not Yet Published
Last Modified on: 02/02/2023 04:53:00 PM UTC
CVE-2023-24453Source: Mitre Source: NIST CVE.ORG Print: PDF
Certain versions of Testquality Updater from Jenkins contain the following vulnerability:
A missing check in Jenkins TestQuality Updater Plugin 1.3 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified username and password.
- CVE-2023-24453 has been assigned by [email protected] to track the vulnerability - currently rated as MEDIUM severity.
- Affected Vendor/Software: Jenkins Project - Jenkins TestQuality Updater Plugin version <= 1.3
- Affected Vendor/Software: Jenkins Project - Jenkins TestQuality Updater Plugin version ?> 1.3
CVSS3 Score: 6.5 - MEDIUM
|Jenkins Security Advisory 2023-01-24|| www.jenkins.io |
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
No vendor comments have been submitted for this CVE
|@CVEreport||CVE-2023-24453 : A missing check in Jenkins TestQuality Updater Plugin 1.3 and earlier allows attackers with Overal… twitter.com/i/web/status/1…||2023-01-26 22:20:44|