CVE-2023-24426
First published: Tue Jan 24 2023(Updated: )
Jenkins Azure AD Plugin 303.va_91ef20ee49f and earlier does not invalidate the previous session on login.
Credit: jenkinsci-cert@googlegroups.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Jenkins Azure Ad | <=303.va_91ef20ee49f |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Jenkins Azure AD Plugin vulnerability?
The vulnerability ID for this Jenkins Azure AD Plugin vulnerability is CVE-2023-24426.
What is the severity of CVE-2023-24426?
The severity of CVE-2023-24426 is high with a severity value of 8.8.
What does the Jenkins Azure AD Plugin 303.va_91ef20ee49f and earlier vulnerability do?
The Jenkins Azure AD Plugin 303.va_91ef20ee49f and earlier vulnerability does not invalidate the previous session on login.
How can I fix the Jenkins Azure AD Plugin 303.va_91ef20ee49f and earlier vulnerability?
To fix the Jenkins Azure AD Plugin 303.va_91ef20ee49f and earlier vulnerability, update to a version that includes the fix.
Where can I find more information about CVE-2023-24426?
You can find more information about CVE-2023-24426 on the Jenkins website.
- collector/nvd-index
- collector/mitre-cve
- vendor/jenkins
- canonical/jenkins azure ad
- version/jenkins azure ad/303.va_91ef20ee49f