Jenkins Bearychat
By the Year
In 2023 there have been 2 vulnerabilities in Jenkins Bearychat with an average score of 7.7 out of ten. Bearychat did not have any published security vulnerabilities last year. That is, 2 more vulnerabilities have already been reported in 2023 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 2 | 7.65 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Bearychat vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Jenkins Bearychat Security Vulnerabilities
A missing permission check in Jenkins BearyChat Plugin 3.0.2 and earlier
CVE-2023-24459
6.5 - Medium
- January 26, 2023
A missing permission check in Jenkins BearyChat Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL.
AuthZ
A cross-site request forgery (CSRF) vulnerability in Jenkins BearyChat Plugin 3.0.2 and earlier
CVE-2023-24458
8.8 - High
- January 26, 2023
A cross-site request forgery (CSRF) vulnerability in Jenkins BearyChat Plugin 3.0.2 and earlier allows attackers to connect to an attacker-specified URL.
Session Riding
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Jenkins Bearychat or by Jenkins? Click the Watch button to subscribe.
