Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Jenkins Project | Jenkins Azure Credentials Plugin | affected |
|
No data.
No data available yet.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2023-0767 | A missing permission check in Jenkins Azure Credentials Plugin 253.v887e0f9e898b and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server. |
 Github GHSA |
GHSA-px2r-cmr2-phw7 | Missing Authorization in Jenkins Azure Credentials Plugin |
Wed, 19 Mar 2025 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: jenkins
Published:
Updated: 2025-03-19T16:14:14.050Z
Reserved: 2023-02-14T00:00:00.000Z
Link: CVE-2023-25768
Vulnrichment
Updated: 2024-08-02T11:32:12.434Z
NVD
Status : Modified
Published: 2023-02-15T14:15:13.947
Modified: 2025-03-19T17:15:39.227
Link: CVE-2023-25768
Redhat
No data.
OpenCVE Enrichment
No data.