GHSA-rr3p-5fcf-v5m3
GitHub Security Advisory
SSL/TLS certificate validation disabled by default in Jenkins Checkmarx Plugin
✓ GitHub Reviewed
HIGH
Has CVE
Advisory Details
Jenkins Checkmarx Plugin 2022.4.3 and earlier disables SSL/TLS validation for connections to the Checkmarx server by default.
Affected Packages
Maven
com.checkmarx.jenkins:checkmarx
Affected versions:
0
(fixed in 2023.2.6)
Related CVEs
Key Information
7.5
/10
Dataset
Last updated: August 24, 2025 6:28 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.