Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

vendredi 3 juillet 2020

ZAP Pipeline Plugin up to 1.9 on Jenkins CSP privilege escalation

A vulnerability, which was classified as critical, was found in ZAP Pipeline Plugin up to 1.9 on Jenkins. Affected is an unknown functionality of the component CSP Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 99

x

Événements SSI