{"vulnerability": "cve-2023-2444", "sightings": [{"uuid": "05e65fa8-967c-4c20-b87c-2fcce534ed04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24441", "type": "seen", "source": "https://t.me/arpsyndicate/606", "content": "#ExploitObserverAlert\n\nCVE-2023-24441\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-24441. Jenkins MSTest Plugin 1.0.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.\n\nFIRST-EPSS: 0.000910000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2023-11-27T22:57:09.000000Z"}, {"uuid": "af79aa3b-6f40-49c1-970c-5d11ff25f517", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2444", "type": "seen", "source": "https://t.me/cibsecurity/63912", "content": "\u203c CVE-2023-2444 \u203c\n\nA cross site request forgery vulnerability exists in Rockwell Automation's FactoryTalk Vantagepoint. This vulnerability can be exploited in two ways. If an attacker sends a malicious link to a computer that is on the same domain as the FactoryTalk Vantagepoint server and a user clicks the link, the attacker could impersonate the legitimate user and send requests to the affected product.\u00c2\u00a0\u00c2\u00a0Additionally, if an attacker sends an untrusted link to a computer that is not on the same domain as the server and a user opens the FactoryTalk Vantagepoint website, enters credentials for the FactoryTalk Vantagepoint server, and clicks on the malicious link a cross site request forgery attack would be successful as well.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:20:37.000000Z"}, {"uuid": "fdbe4067-f47f-4c5f-8587-d3d7d25067dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24443", "type": "seen", "source": "https://t.me/cibsecurity/56997", "content": "\u203c CVE-2023-24443 \u203c\n\nJenkins TestComplete support Plugin 2.8.1 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-27T00:44:09.000000Z"}, {"uuid": "12294ffe-af54-422c-a893-dcb629c97bac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24442", "type": "seen", "source": "https://t.me/cibsecurity/56973", "content": "\u203c CVE-2023-24442 \u203c\n\nJenkins GitHub Pull Request Coverage Status Plugin 2.2.0 and earlier stores the GitHub Personal Access Token, Sonar access token and Sonar password unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-27T00:39:13.000000Z"}, {"uuid": "8964b61c-4a3a-44eb-95c2-8cf444bc9654", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24449", "type": "seen", "source": "https://t.me/cibsecurity/56968", "content": "\u203c CVE-2023-24449 \u203c\n\nJenkins PWauth Security Realm Plugin 0.4 and earlier does not restrict the names of files in methods implementing form validation, allowing attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-06T13:48:22.000000Z"}]}