Lucene search
China National Vulnerability DatabaseCNVD-2022-54947HistoryMar 31, 2022 - 12:00 a.m.
Jenkins Bitbucket Server Integration Plugin授权问题漏洞
2022-03-3100:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
22.2%
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application software.Jenkins Bitbucket Server Integration Plugin 3.1.0 and earlier versions are vulnerable to an authorization issue that stems from multiple HTTP endpoints do not perform permission checks. An attacker with overall/read access can create, view, and delete BitBucket Server users using this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jenkins bitbucket server integration plugin | lt | 3.1.0 |
Related
prion
prion
Design/Logic Flaw
2022-03-29 13:15:00
nvd
nvd
CVE-2022-28134
2022-03-29 13:15:08
osv
osv
CVE-2022-28134
2022-03-29 13:15:08
Missing permission checks in Jekins Bitbucket Server Integration Plugin
2022-03-30 00:00:25
cve
cve
CVE-2022-28134
2022-03-29 13:15:08
alpinelinux
alpinelinux
CVE-2022-28134
2022-03-29 13:15:08
cvelist
cvelist
CVE-2022-28134
2022-03-29 12:30:45
github
github
Missing permission checks in Jekins Bitbucket Server Integration Plugin
2022-03-30 00:00:25
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2022-03-29)
2022-03-31 00:00:00