Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-xj36-6xc6-8p9x

GitHub Security Advisory

Jenkins Delphix Plugin has SSL/TLS certificate validation disabled by default

✓ GitHub Reviewed MODERATE Has CVE
View on GitHub

Advisory Details

In Jenkins Delphix Plugin 3.0.1, a global option for administrators to enable or disable SSL/TLS certificate validation for Data Control Tower (DCT) connections is disabled by default.

Affected Packages

Maven org.jenkins-ci.plugins:delphix
Affected versions: 3.0.1 (fixed in 3.0.2)

Related CVEs

CVE-2024-28161

Key Information

GHSA ID
GHSA-xj36-6xc6-8p9x
Published
March 6, 2024 6:30 PM
Last Modified
November 14, 2024 10:43 PM
CVSS Score
5.0 /10
Primary Ecosystem
Maven
Primary Package
org.jenkins-ci.plugins:delphix
GitHub Reviewed
✓ Yes

Dataset

Last updated: July 3, 2025 6:26 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.