vulnerability

Jenkins Advisory 2023-06-14: CVE-2023-32262: Exposure of system-scoped credentials in Dimensions Plugin

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:P/I:N/A:N)	Jun 15, 2023	Jun 15, 2023	Jul 28, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:N/A:N)

Published

Jun 15, 2023

Added

Jun 15, 2023

Modified

Jul 28, 2025

Description

A potential vulnerability has been identified in the Micro Focus Dimensions CM Plugin for Jenkins. The vulnerability allows attackers with Item/Configure permission to access and capture credentials they are not entitled to.
See the following Jenkins security advisory for details: * https://www.jenkins.io/security/advisory/2023-06-14/ https://www.jenkins.io/security/advisory/2023-06-14/

jenkins-lts-upgrade-2_401_1jenkins-upgrade-2_400

NEW

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.