CVE-2020-2268
CVE-2020-2268
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
16 Sep 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A cross-site request forgery (CSRF) vulnerability in Jenkins MongoDB Plugin 1.3 and earlier allows attackers to gain access to some metadata of any arbitrary files on the Jenkins controller.
Affected products
Jenkins project · Jenkins MongoDB PluginWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →