Skip to main content

Github Authentication

1 CVEs product

Monthly

CVE-2019-10315 Maven HIGH PATCH This Week

Jenkins GitHub Authentication Plugin 0.31 and earlier did not use the state parameter of OAuth to prevent CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Jenkins CSRF Github Authentication
NVD
CVSS 3.0
8.8
EPSS
2.1%
EPSS 2% CVSS 8.8
HIGH PATCH This Week

Jenkins GitHub Authentication Plugin 0.31 and earlier did not use the state parameter of OAuth to prevent CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Jenkins CSRF Github Authentication
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy