Description
A cross-site request forgery (CSRF) vulnerability in Jenkins Claim Plugin 2.18.1 and earlier allows attackers to change claims.
Remediation
References
https://www.jenkins.io/security/advisory/2021-02-24/#SECURITY-2188%20%282%29
Related Vulnerabilities
CVE-2020-10758 Vulnerability in maven package org.keycloak:keycloak-wildfly-server-subsystem
CVE-2017-7661 Vulnerability in maven package org.apache.cxf.fediz:fediz-oidc
CVE-2023-48293 Vulnerability in maven package org.xwiki.contrib:xwiki-application-admintools
CVE-2022-46686 Vulnerability in maven package io.jenkins.plugins:custom-build-properties
CVE-2021-41079 Vulnerability in maven package org.apache.tomcat:tomcat