CVE-2023-41943 - How Jenkins AWS CodeCommit Trigger Plugin Allowed Attackers to Clear SQS Queues
Published: June 2024
Severity: Medium (CVSS: 6.5)
Component: Jenkins AWS CodeCommit Trigger Plugin
Affected Versions: 3..12 and earlier
If you're running
CVE-2023-41941 - Exploiting Missing Permission Checks in Jenkins AWS CodeCommit Trigger Plugin
Jenkins is a popular automation server, heavily used for CI/CD pipelines. One of its strengths is the extensibility through hundreds of plugins. But every
CVE-2023-41942 - How a CSRF Flaw in Jenkins AWS CodeCommit Trigger Plugin Lets Attackers Clear SQS Queues
Jenkins is widely used for automation, and the AWS CodeCommit Trigger Plugin adds the ability to hook up AWS CodeCommit events with Jenkins jobs. But,
CVE-2023-41944 - Unpacking the Jenkins AWS CodeCommit Trigger Plugin HTML Injection Vulnerability
Published: Summer 2024
Severity: Medium
Affected software: Jenkins AWS CodeCommit Trigger Plugin 3..12 and earlier
Jenkins is a popular automation server used for building,
Episode
00:00:00
00:00:00