Github Authentication
1 CVEs
product
Monthly
Jenkins GitHub Authentication Plugin 0.31 and earlier did not use the state parameter of OAuth to prevent CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Jenkins
CSRF
Github Authentication
NVD
CVSS 3.0
8.8
EPSS
2.1%
CVE-2019-10315
Maven
EPSS 2%
CVSS 8.8
HIGH
PATCH
This Week
Jenkins GitHub Authentication Plugin 0.31 and earlier did not use the state parameter of OAuth to prevent CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Jenkins
CSRF
Github Authentication
NVD