Lucene search
CVE-2022-36888
🗓️ 27 Jul 2022 15:09:15Reported by Alpine Linux Development TeamType 
alpinelinux🔗 security.alpinelinux.org👁 42 Views
Missing permission check in Jenkins HashiCorp Vault Plugin 354.vdb_858fd6b_f48 allows attackers to obtain Vault credential
Show more
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | CVE-2022-36888 | 27 Jul 202214:22 | – | cvelist |
 | Jenkins HashiCorp Vault Plugin does not perform permission checks in several HTTP endpoints that perform Vault connection tests | 28 Jul 202200:00 | – | osv |
 | CVE-2022-36888 | 27 Jul 202215:15 | – | nvd |
 | Design/Logic Flaw | 27 Jul 202215:15 | – | prion |
 | CVE-2022-36888 | 27 Jul 202215:15 | – | cve |
 | Jenkins HashiCorp Vault Plugin does not perform permission checks in several HTTP endpoints that perform Vault connection tests | 28 Jul 202200:00 | – | github |
 | Jenkins Enterprise and Operations Center 2.303.x < 2.303.30.0.15 / 2.346.2.3 Multiple Vulnerabilities (CloudBees Security Advisory 2022-07-27) | 7 Oct 202200:00 | – | nessus |
| OS | OS Version | Architecture | Package | Package Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.16-community | noarch | jenkins | 2.346.2-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | jenkins | 2.361.2-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | jenkins | 2.387.3-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | jenkins | 2.440.3-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | jenkins | 2.440.2-r0 | UNKNOWN |
| Alpine | edge-community | noarch | jenkins | 2.479.1-r0 | UNKNOWN |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo27 Jul 2022 15:15Current
4.3Medium risk
Vulners AI Score4.3
CVSS36.5
EPSS0.0007