CSRF in Jenkins Favorite View Plugin allows malicious view changes
CVE-2023-40351 Published on August 16, 2023

A cross-site request forgery (CSRF) vulnerability in Jenkins Favorite View Plugin 5.v77a_37f62782d and earlier allows attackers to add or remove views from another user's favorite views tab bar.

Vendor Advisory NVD

Products Associated with CVE-2023-40351

Want to know whenever a new CVE is published for Jenkins Favorite View? stack.watch will email you.

Jenkins Favorite View

Affected Versions

Jenkins Project Jenkins Favorite View Plugin:

Before and including 5.v77a_37f62782d is affected.

Exploit Probability

EPSS

0.05%

Percentile

14.91%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CSRF in Jenkins Favorite View Plugin allows malicious view changesCVE-2023-40351 Published on August 16, 2023

Products Associated with CVE-2023-40351

Affected Versions

Exploit Probability

CSRF in Jenkins Favorite View Plugin allows malicious view changes
CVE-2023-40351 Published on August 16, 2023