Jenkins » Jx Resources : Security Vulnerabilities, CVEs, Published In 2019 (CSRF)
A cross-site request forgery vulnerability in Jenkins JX Resources Plugin 1.0.36 and earlier in GlobalPluginConfiguration#doValidateClient allowed attackers to have Jenkins connect to an attacker-specified Kubernetes server, potentially leaking credentials.
Max CVSS
8.8
EPSS Score
0.22%
Published
2019-06-11
Updated
2023-10-25
1 vulnerabilities found