๐ CVE-2022-43411 | GitLab Plugin up to 1.5.35 on Jenkins Webhook Token timing discrepancy
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in GitLab Plugin up to 1.5.35 and classified as critical. Affected by this issue is some unknown functionality of the component Webhook Token Handler. The manipulation leads to observable timing discrepancy. This vulnerability is handled as CVE-2022-43411. Access to the local network is required for this attack. There is no exploit available. ...