Filtered by vendor Jenkins Subscriptions
Filtered by product Rabbitmq Consumer Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-24448 1 Jenkins 1 Rabbitmq Consumer 2023-10-24 6.5 Medium
A missing permission check in Jenkins RabbitMQ Consumer Plugin 2.8 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified AMQP(S) URL using attacker-specified username and password.
CVE-2023-24447 1 Jenkins 1 Rabbitmq Consumer 2023-10-24 8.8 High
A cross-site request forgery (CSRF) vulnerability in Jenkins RabbitMQ Consumer Plugin 2.8 and earlier allows attackers to connect to an attacker-specified AMQP(S) URL using attacker-specified username and password.