CVE-2024-23905

Published: 2024-01-24T18:15Z

Last Modified: 2024-11-21T08:58Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Jenkins Red Hat Dependency Analytics Plugin 0.7.1 and earlier programmatically disables Content-Security-Policy protection for user-generated content in workspaces, archived artifacts, etc. that Jenkins offers for download. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt