Jenkins Octoperf Load Testing — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Octoperf Load Testing, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-28674 — CVSS 8.8 (high): A cross-site request forgery (CSRF) vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to…
CVE-2023-28672 — CVSS 6.5 (medium): Jenkins OctoPerf Load Testing Plugin Plugin 4.5.1 and earlier does not perform a permission check in a connection test HTTP endpoint…
CVE-2023-28671 — CVSS 4.3 (medium): A cross-site request forgery (CSRF) vulnerability in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.0 and earlier allows attackers to…
CVE-2023-28673 — CVSS 4.3 (medium): A missing permission check in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers with Overall/Read permission…
CVE-2023-28675 — CVSS 4.3 (medium): A missing permission check in Jenkins OctoPerf Load Testing Plugin Plugin 4.5.2 and earlier allows attackers to connect to a previously…