CVE-2023-50775

CWE-352Cross-Site Request Forgery (CSRF)5 documents5 sources
Severity
4.3MEDIUM
EPSS
0.0%
top 85.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Jenkins Project Jenkins Deployment Dashboard PluginJenkins Deployment Dashboard
Timeline
PublishedDec 13

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins Deployment Dashboard Plugin 1.0.10 and earlier allows attackers to copy jobs.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages3 packages

🔴Vulnerability Details

3
CVEList
CVE-2023-50775: A cross-site request forgery (CSRF) vulnerability in Jenkins Deployment Dashboard Plugin 12023-12-13
GHSA
Cross-site request forgery vulnerability in Jenkins Deployment Dashboard Plugin2023-12-13
OSV
Cross-site request forgery vulnerability in Jenkins Deployment Dashboard Plugin2023-12-13

📋Vendor Advisories

1
Jenkins
Jenkins Security Advisory 2023-12-132023-12-13
CVE-2023-50775 (MEDIUM CVSS 4.3) | A cross-site request forgery (CSRF) | cvebase.io