Skip to main content

Msteams Webhook Trigger

1 CVEs product

Monthly

CVE-2023-46658 Maven MEDIUM This Month

Jenkins MSTeams Webhook Trigger Plugin 0.1.1 and earlier uses a non-constant time comparison function when checking whether the provided and expected webhook token are equal, potentially allowing. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Msteams Webhook Trigger
NVD
CVSS 3.1
5.3
EPSS
0.6%
EPSS 1% CVSS 5.3
MEDIUM This Month

Jenkins MSTeams Webhook Trigger Plugin 0.1.1 and earlier uses a non-constant time comparison function when checking whether the provided and expected webhook token are equal, potentially allowing. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Msteams Webhook Trigger
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy