How severe is CVE-2023-24445?

CVE-2023-24445 has a CVSS v3 score of 6.1 (MEDIUM).

CVE-2023-24445

Name: openid
Author: jenkins

6.1MEDIUM

公開日: 1/26/2023更新日: 4/2/2025

Jenkins OpenID Plugin 2.4 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins.

jenkinsopenid