Jenkins Servicenow Devops vulnerabilities
2 known vulnerabilities affecting jenkins/servicenow_devops.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-3442HIGHCVSS 7.5fixed in 1.38.12023-07-26
CVE-2023-3442 [HIGH] CWE-862 CVE-2023-3442: A missing authorization vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOp
A missing authorization vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for ServiceNow DevOps on your Jenkins server. No changes are required on
nvd
CVE-2023-3414MEDIUMCVSS 6.5fixed in 1.38.12023-07-26
CVE-2023-3414 [MEDIUM] CWE-352 CVE-2023-3414: A cross-site request forgery vulnerability exists in versions of the Jenkins Plug-in for ServiceNow
A cross-site request forgery vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for ServiceNow DevOps on your Jenkins server. No changes are requir
nvd