CVE-2023-3414
CVSS V2 None
CVSS V3 None
Description
A cross-site request forgery vulnerability exists in versions of the Jenkins Plug-in for ServiceNow DevOps prior to 1.38.1 that, if exploited successfully, could cause the unwanted exposure of sensitive information. To address this issue, apply the 1.38.1 version of the Jenkins plug-in for ServiceNow DevOps on your Jenkins server. No changes are required on your instances of the Now Platform.
Overview
- CVE ID
- CVE-2023-3414
- Assigner
- SN
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-07-26T18:20:18.253Z
- Last Modified Date
- 2023-07-26T18:20:18.253Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1434118 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-3414 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3414 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-24 20:26:34 | Added to TrackCVE |