Source |
CVE Liste |
Identifiant |
8304639 |
Date de publication |
2023-01-26 21:18:16 (vue: 2023-01-27 00:08:35) |
Titre |
CVE-2023-24425 |
Texte |
Jenkins Kubernetes Credentials Provider Plugin 1.208.v128ee9800c04 and earlier does not set the appropriate context for Kubernetes credentials lookup, allowing attackers with Item/Configure permission to access and potentially capture Kubernetes credentials they are not entitled to. |
Envoyé |
Oui |
Condensat |
2023 208 24425 access allowing appropriate are attackers capture context credentials cve does earlier entitled item/configure jenkins kubernetes lookup not permission plugin potentially provider set v128ee9800c04 |
Tags |
|
Stories |
Uber
|
Notes |
|
Move |
|