Jenkins - Tuleap Authentication CVE

Filtered by vendor Jenkins Subscribe

Filtered by product Tuleap Authentication

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-40343	1 Jenkins	1 Tuleap Authentication	2023-12-10	N/A	5.9 MEDIUM
Jenkins Tuleap Authentication Plugin 1.1.20 and earlier uses a non-constant time comparison function when validating an authentication token allowing attackers to use statistical methods to obtain a valid authentication token.

Vulnerabilities (CVE)