CVSS Score of 10 (low)


Published Jun 14, 2023
Updated: Jun 23, 2023
CWE ID 295


CVE-2023-35142 is a vulnerability found in Jenkins Checkmarx Plugin 2022.4.3 and earlier versions, which disables SSL/TLS validation for connections to the Checkmarx server by default. This vulnerability has a high severity rating and can potentially pose significant danger to organizations. It affects a wide range of products, including lru2Yi, r0KAMz, lru2Yj, lru2Yg, lru2Yh, lru2Ym, lru2Yn, lru2Yk, lru2Yl, lru2Yq, lru2Yo, lru2Yp, lru2YS, lru2YT, lru2YQ, and more. To remediate this vulnerability, organizations should update their Jenkins Checkmarx Plugin to a version that addresses the SSL/TLS validation issue.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-35142 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options