CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2023-5072

mediumcovered by 2 sourcesfirst seen 2023-12-13
Affects plugin: Analysis Model API Affects plugin: Deployment Dashboard Affects plugin: Dingding JSON Pusher Affects plugin: HTMLResource Affects plugin: Nexus Platform Affects plugin: OpenId Connect Authentication Affects plugin: PaaSLane Estimate Affects plugin: Scriptler

CSIRTS triage

What
Multiple plugins in Jenkins are affected by security vulnerabilities.
Who is affected
All Jenkins installations using the affected plugins.
Urgency
Remediation is urgent due to the potential for exploitation, though severity is currently unknown.
Action
Upgrade the affected plugins to the latest versions.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2023-5072

Get an email if CVE-2023-5072 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (2)

External references

NVD record for CVE-2023-5072

CVE.org record

Embed the live status

CVE-2023-5072 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2023-5072 status](https://www.csirts.com/badge/CVE-2023-5072)](https://www.csirts.com/cve/CVE-2023-5072)