VYPR
Low severityNVD Advisory· Published Jul 19, 2023· Updated Oct 21, 2024

Dimensions CM Plugin for Jenkins 0.8.17 – 0.9.3

CVE-2023-32263

Description

A potential vulnerability has been identified in the Micro Focus Dimensions CM Plugin for Jenkins. The vulnerability could be exploited to retrieve a login certificate if an authenticated user is duped into using an attacker-controlled Dimensions CM server. This vulnerability only applies when the Jenkins plugin is configured to use login certificate credentials.

https://www.jenkins.io/security/advisory/2023-06-14/

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.jenkins-ci.plugins:dimensionsscmMaven
>= 0.8.17, < 0.9.3.10.9.3.1

Affected products

2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.