Filtered by vendor Jenkins
Subscriptions
Filtered by product Qualys Web App Scanning Connector
Subscriptions
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-39154 | 1 Jenkins | 1 Qualys Web App Scanning Connector | 2024-10-23 | 6.5 Medium |
Incorrect permission checks in Jenkins Qualys Web App Scanning Connector Plugin 2.0.10 and earlier allow attackers with global Item/Configure permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. |
Page 1 of 1.