Security Advisory

CVE-2025-24403

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-22 17:02:55

Last updated 2025-01-23 15:58:42

Assigner jenkins

State PUBLISHED

Description

A missing permission check in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of Azure credentials stored in Jenkins.

← Browse all CVEs View on cve.org ↗