Description
A cross-site request forgery (CSRF) vulnerability in Jenkins Reverse Proxy Auth Plugin 1.7.4 and earlier allows attackers to connect to an attacker-specified LDAP server using attacker-specified credentials.
Remediation
References
https://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-3002
Related Vulnerabilities
CVE-2023-31126 Vulnerability in maven package org.xwiki.commons:xwiki-commons-xml
CVE-2019-1003080 Vulnerability in maven package org.jenkins-ci.plugins:openshift-deployer
CVE-2018-17194 Vulnerability in maven package org.apache.nif:nifi-framework-cluster
CVE-2019-17558 Vulnerability in maven package org.apache.solr:solr-velocity
CVE-2016-0706 Vulnerability in maven package org.apache.tomcat:catalina