VYPR

Qualys Container Scanning Connector Plugin

by Jenkins Project

CVEs (1)

  • CVE-2023-4777LowSep 8, 2023
    risk 0.20cvss 3.1epss 0.00

    An incorrect permission check in Qualys Container Scanning Connector Plugin 1.6.2.6 and earlier allows attackers with global Item/Configure permission (while lacking Item/Configure permission on any particular job) to enumerate credentials IDs of credentials stored in Jenkins…