Jenkins Cross-Site Request Forgery vulnerability

GHSA-rqhg-cxfr-8xqw · CVE-2013-0327

Published May 5, 2022 · Modified Dec 3, 2024

Description

Cross-site request forgery (CSRF) vulnerability in Jenkins master in Jenkins before 1.502 and LTS before 1.480.3 allows remote attackers to hijack the authentication of users via unknown vectors.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2013-0327
WEB https://access.redhat.com/errata/RHSA-2013:0638
WEB https://access.redhat.com/security/cve/CVE-2013-0327
WEB https://bugzilla.redhat.com/show_bug.cgi?id=914875
WEB https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-02-16
WEB http://rhn.redhat.com/errata/RHSA-2013-0638.html
WEB http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-02-16.cb
WEB http://www.openwall.com/lists/oss-security/2013/02/21/7

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes