Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3
CVE-2025-24402
- EPSS 0.13%
- Published 22.01.2025 17:15:14
- Last modified 03.10.2025 00:13:56
A cross-site request forgery (CSRF) vulnerability in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers to connect to a Service Fabric URL using attacker-specified credentials IDs obtained through another method.
4.3
CVE-2025-24403
- EPSS 0.17%
- Published 22.01.2025 17:15:14
- Last modified 03.10.2025 00:13:41
A missing permission check in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of Azure credentials stored in Jenkins.
1