Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-41234HistorySep 21, 2022 - 4:15 p.m.
CVE-2022-41234
2022-09-2116:15:00
Alpine Linux Development Team
security.alpinelinux.org
27
0.001 Low
EPSS
Percentile
42.5%
Jenkins Rundeck Plugin 3.6.11 and earlier does not protect access to the /plugin/rundeck/webhook/ endpoint, allowing users with Overall/Read permission to trigger jobs that are configured to be triggerable via Rundeck.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.16-community | noarch | jenkins | = 2.346.2-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | jenkins | = 2.361.2-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | jenkins | = 2.387.3-r0 | UNKNOWN |
| Alpine | edge-community | noarch | jenkins | = 2.440.2-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | jenkins | = 2.440.3-r0 | UNKNOWN |
Related
cve
cve
CVE-2022-41234
2022-09-21 16:15:00
osv
osv
CVE-2022-41234
2022-09-21 16:15:10
Missing webhook endpoint authorization in Jenkins Rundeck Plugin
2022-09-22 00:00:28
prion
prion
Design/Logic Flaw
2022-09-21 16:15:00
cvelist
cvelist
CVE-2022-41234
2022-09-21 15:45:54
github
github
Missing webhook endpoint authorization in Jenkins Rundeck Plugin
2022-09-22 00:00:28
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2022-09-21)
2022-10-07 00:00:00
Jenkins weekly < 2.370 Multiple Vulnerabilities
2022-10-07 00:00:00