vulnerability

Jenkins Advisory 2023-07-26: CVE-2023-39156: CSRF vulnerability in Bazaar Plugin

Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Jul 27, 2023
Added
Jul 27, 2023
Modified
Jan 28, 2025

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins Bazaar Plugin 1.22 and earlier allows attackers to delete previously created Bazaar SCM tags.

Solution(s)

jenkins-lts-upgrade-2_401_3jenkins-upgrade-2_416
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.