CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Jenkins: >> Azure Service Fabric >> 1.3 Security Vulnerabilities

CVE-2025-24402

A cross-site request forgery (CSRF) vulnerability in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers to connect to a Service Fabric URL using attacker-specified credentials IDs obtained through another method.

CVSS Score

4.3

EPSS Score

0.003

Published

2025-01-22

CVE-2025-24403

A missing permission check in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of Azure credentials stored in Jenkins.

CVSS Score

4.3

EPSS Score

0.003

Published

2025-01-22

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved