Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Jenkins Subscribe
Filtered by product Orka By Macstadium
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-37949 1 Jenkins 1 Orka By Macstadium 2024-02-05 N/A 7.1 HIGH
A missing permission check in Jenkins Orka by MacStadium Plugin 1.33 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.