CVE-2024-47805 | Jenkins Credentials Plugin up to 1380.va_435002fa_924 CLI/REST API config.xml information disclosure

Inserito da Angelo Barbosa | Ott 2, 2024 | CVE

A vulnerability was found in Jenkins Credentials Plugin up to 1380.va_435002fa_924 and classified as problematic. Affected by this issue is some unknown functionality of the file config.xml of the component CLI/REST API. The manipulation leads to information disclosure.

This vulnerability is handled as CVE-2024-47805. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47805 | Jenkins Credentials Plugin up to 1380.va_435002fa_924 CLI/REST API config.xml information disclosure

Post correlati

CVE-2023-50872 | Accredible Credential.net resource injection

CVE-2024-27686 | MikroTik RouterOS 5.0/6.44/6.49.10 SMB Request denial of service (ID 177811)

CVE-2024-28830 | Checkmk up to 2.0.0p39/2.1.0p44/2.2.0p27/2.3.0p6 log file

CVE-2024-33563 | 8theme XStore Plugin up to 9.3.8 on WordPress authorization