Security Advisory

CVE-2024-23901

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-24 17:52:25

Last updated 2025-05-30 14:16:37

Assigner jenkins

State PUBLISHED

Description

Jenkins GitLab Branch Source Plugin 684.vea_fa_7c1e2fe3 and earlier unconditionally discovers projects that are shared with the configured owner group, allowing attackers to configure and share a project, resulting in a crafted Pipeline being built by Jenkins during the next scan of the group.

← Browse all CVEs View on cve.org ↗