Lucene search
China National Vulnerability DatabaseCNVD-2022-56939HistoryJul 04, 2022 - 12:00 a.m.
Jenkins Request Rename Or Delete Plugin授权问题漏洞
2022-07-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
22.1%
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.An authorization issue vulnerability exists in Jenkins Request Rename Or Delete Plugin version 1.1.0 and prior, which stems from an inability to properly perform permission checks in HTTP The vulnerability stems from an inability to properly perform permission checks in the HTTP endpoint. An attacker with global/read access could view the administrative configuration page listing the pending requests.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jenkins request rename or delete plugin | lt | 1.1.0 |
Related
cve
cve
CVE-2022-34814
2022-06-30 18:15:15
prion
prion
Cross site request forgery (csrf)
2022-06-30 18:15:00
github
github
Incorrect Authorization in Jenkins Request Rename Or Delete Plugin
2022-07-01 00:01:08
osv
osv
Incorrect Authorization in Jenkins Request Rename Or Delete Plugin
2022-07-01 00:01:08
cvelist
cvelist
CVE-2022-34814
2022-06-30 17:49:22
nvd
nvd
CVE-2022-34814
2022-06-30 18:15:15
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2022-06-30)
2023-08-04 00:00:00