Session Persistence Vulnerability in Jenkins Azure AD Plugin

Session Persistence Vulnerability in Jenkins Azure AD Plugin

CVE-2023-24426 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Jenkins Azure AD Plugin 303.va_91ef20ee49f and earlier does not invalidate the previous session on login.

Learn more about our Azure Audit.