A missing permission check in Jenkins Coverity Plugin 1.11.4 and earlier allows attackers to capture credentials stored in Jenkins
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
Prion | Design/Logic Flaw | 27 Jul 202215:15 | – | prion |
OSV | CVE-2022-36921 | 27 Jul 202215:15 | – | osv |
OSV | Missing permission check in Coverity Plugin allows capturing credentials | 28 Jul 202200:00 | – | osv |
Cvelist | CVE-2022-36921 | 27 Jul 202214:29 | – | cvelist |
Github Security Blog | Missing permission check in Coverity Plugin allows capturing credentials | 28 Jul 202200:00 | – | github |
NVD | CVE-2022-36921 | 27 Jul 202215:15 | – | nvd |
Tenable Nessus | Jenkins Enterprise and Operations Center 2.303.x < 2.303.30.0.15 / 2.346.2.3 Multiple Vulnerabilities (CloudBees Security Advisory 2022-07-27) | 7 Oct 202200:00 | – | nessus |
[
{
"product": "Jenkins Coverity Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "1.11.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "unknown",
"version": "next of 1.11.4",
"versionType": "custom"
}
]
}
]
Source | Link |
---|---|
openwall | www.openwall.com/lists/oss-security/2022/07/27/1 |
jenkins | www.jenkins.io/security/advisory/2022-07-27/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo