CVE-2023-35142
Improper Certificate Validation in maven/com.checkmarx.jenkins/checkmarx
Identifiers
GHSA-rr3p-5fcf-v5m3, CVE-2023-35142
Package Slug
maven/com.checkmarx.jenkins/checkmarx
Vulnerability
Improper Certificate Validation
Description
Jenkins Checkmarx Plugin 2022.4.3 and earlier disables SSL/TLS validation for connections to the Checkmarx server by default.
Affected Versions
All versions up to 2022.4.3
Solution
Upgrade to version 2023.2.6 or above.
Last Modified
2024-01-31
| source |