Vulnerabilities > Jenkins > Blue Ocean > High

DATE CVE VULNERABILITY TITLE RISK
2023-08-16 CVE-2023-40341 Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Blue Ocean
A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.27.5 and earlier allows attackers to connect to an attacker-specified URL, capturing GitHub credentials associated with an attacker-specified job.
network
low complexity
jenkins CWE-352
8.8