https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-40343
Source: CVEAnnouncements
Source Link: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-40343
Jenkins Tuleap Authentication Plugin 1.1.20 and earlier uses a non-constant time comparison function when validating an authentication token allowing attackers to use statistical methods to obtain a valid authentication token. https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-40343 Source: CVEAnnouncements Source Link: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-40343
|
|