๐ CVE-2023-46657
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: cvedetails.com
Jenkins Gogs Plugin 1.0.15 and earlier uses a non-constant time comparison function when checking whether the provided and expected webhook token are equal, potentially allowing attackers to use statistical methods to obtain a valid webhook token. (CVSS:0.0) (Last Update:2023-10-25 18:17:40) ...