A cross-site request forgery vulnerability in Jenkins ElasticBox Jenkins Kubernetes CI/CD Plugin allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: jenkins

Published: 2019-10-23T12:45:42

Updated: 2023-10-24T16:50:13.329Z

Reserved: 2019-03-29T00:00:00


Link: CVE-2019-10468

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2019-10-23T13:15:10.987

Modified: 2023-10-25T18:16:25.377


Link: CVE-2019-10468

JSON object: View

cve-icon Redhat Information

No data.

CWE