Vulnerability Details CVE-2023-30529
Jenkins Lucene-Search Plugin 387.v938a_ecb_f7fe9 and earlier does not require POST requests for an HTTP endpoint, allowing attackers to reindex the database.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.1%
CVSS Severity
CVSS v3 Score 4.3
References
Products affected by CVE-2023-30529
-
cpe:2.3:a:jenkins:lucene-search:-
-
cpe:2.3:a:jenkins:lucene-search:370.v62a5f618cd3a
-
cpe:2.3:a:jenkins:lucene-search:387.v938a_ecb_f7fe9