Security Advisory

CVE-2023-28676

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-23 11:26:05

Last updated 2025-02-25 19:19:58

Assigner jenkins

State PUBLISHED

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins Convert To Pipeline Plugin 1.0 and earlier allows attackers to create a Pipeline based on a Freestyle project, potentially leading to remote code execution (RCE).

← Browse all CVEs View on cve.org ↗