Lucene search

CVE-2022-45393

🗓️ 15 Nov 2022 20:13:15Reported by jenkinsType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 258 Views

A CSRF vulnerability in Jenkins Delete log Plugin 1.0 allows attackers to delete build logs

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Github Security Blog	Cross-Site Request Forgery in Jenkins Delete log Plugin	16 Nov 202212:00	–	github
Cvelist	CVE-2022-45393	15 Nov 202200:00	–	cvelist
Prion	Cross site request forgery (csrf)	15 Nov 202220:15	–	prion
NVD	CVE-2022-45393	15 Nov 202220:15	–	nvd
OSV	GHSA-HW4F-G7WH-XP52 Cross-Site Request Forgery in Jenkins Delete log Plugin	16 Nov 202212:00	–	osv
Tenable Nessus	Jenkins plugins Multiple Vulnerabilities (2022-11-15)	4 Aug 202300:00	–	nessus
Tenable Nessus	Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.6 / 2.361.3.4 Multiple Vulnerabilities (CloudBees Security Advisory 2022-11-15)	16 Nov 202200:00	–	nessus

Nvd

Node

jenkins delete_logRange≤1.0jenkins

[
  {
    "product": "Jenkins Delete log Plugin",
    "vendor": "Jenkins project",
    "versions": [
      {
        "lessThanOrEqual": "1.0",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 1.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
openwall	www.openwall.com/lists/oss-security/2022/11/15/4
jenkins	www.jenkins.io/security/advisory/2022-11-15/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Nov 2022 20:15Current

4.2Medium risk

Vulners AI Score4.2

CVSS33.5

EPSS0.00047

CWE-352