cbcvebase.
CVE-2024-28161
published 2024-03-06

CVE-2024-28161: In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower (DCT)…

medium5.3CVSS 3.1
AVNACLPRNUINSUCNINAL
In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower (DCT) connections is disabled by default.

Affected

13 ranges
VendorProductVersion rangeFixed in
jenkinsappspider_plugin
jenkinsbitbucket_branch_source_plugin
jenkinsbuild_monitor_view_plugin
jenkinsdelphix
jenkinsdelphix_plugin
jenkinsgitbucket_plugin
jenkinshtml_publisher_plugin
jenkinsimproper_input_sanitization_in_html_publisher_plugin
jenkinsmq_notifier_plugin
jenkinsowasp_dependency-check_plugin
jenkinssubversion_partial_release_manager_plugin
jenkinstls_certificate_validation_in_delphix_plugin
jenkins_projectjenkins_delphix_plugin