Known Vulnerabilities for Checkmarx by Jenkins
Listed below are 4 of the newest known vulnerabilities associated with "Checkmarx" by "Jenkins".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-35142 json | Jenkins Checkmarx Plugin 2022.4.3 and earlier disables SSL/TLS validation for connections to the Checkmarx server by default. | 8.1 - HIGH | 2023-06-14 | 2023-06-23 |
| CVE-2022-46684 json | Jenkins Checkmarx Plugin 2022.3.3 and earlier does not escape values returned from the Checkmarx service API before inserting... | 5.4 - MEDIUM | 2022-12-12 | 2022-12-12 |
| CVE-2022-25201 json | Missing permission checks in Jenkins Checkmarx Plugin 2022.1.2 and earlier allow attackers with Overall/Read permission to co... | 6.5 - MEDIUM | 2022-02-15 | 2023-11-03 |
| CVE-2022-25200 json | A cross-site request forgery (CSRF) vulnerability in Jenkins Checkmarx Plugin 2022.1.2 and earlier allows attackers to connec... | 8.8 - HIGH | 2022-02-15 | 2023-11-03 |