GHSA-vxmh-p52j-h33m

Source
https://github.com/advisories/GHSA-vxmh-p52j-h33m
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/01/GHSA-vxmh-p52j-h33m/GHSA-vxmh-p52j-h33m.json
Aliases
  • CVE-2023-24424
Published
2023-01-26T21:30:18Z
Modified
2023-11-08T04:11:44.676213Z
Details

Jenkins OpenId Connect Authentication Plugin 2.4 and earlier does not invalidate the previous session on login.

References

Affected packages

Maven / org.jenkins-ci.plugins:oic-auth

Package

Name
org.jenkins-ci.plugins:oic-auth

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0The exact introduced commit is unknown
Fixed
2.5

Affected versions

1.*

1.0
1.1
1.2
1.3
1.4
1.5
1.6
1.7
1.8

2.*

2.0.0
2.1
2.2
2.3
2.4