CVE-2023-24423EPSS p38.0%
CVE-2023-24423CVE-2023-24423
jenkins / gerrit_trigger
Description
A cross-site request forgery (CSRF) vulnerability in Jenkins Gerrit Trigger Plugin 2.38.0 and earlier allows attackers to rebuild previous builds triggered by Gerrit.
Scoring
| CVSS | 6.5 () |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
| EPSS | 0.49% probability of exploitation · percentile 38.0% · 2026-06-18T12:00:27Z |
| Last modified | 2026-06-17 |