Lucene search
JenkinsCVELIST:CVE-2022-25176HistoryFeb 15, 2022 - 4:10 p.m.
CVE-2022-25176
2022-02-1516:10:55
jenkins
raw.githubusercontent.com
3
Jenkins Pipeline: Groovy Plugin 2648.va9433432b33c and earlier follows symbolic links to locations outside of the checkout directory for the configured SCM when reading the script file (typically Jenkinsfile) for Pipelines, allowing attackers able to configure Pipelines to read arbitrary files on the Jenkins controller file system.
Related
prion
prion
Design/Logic Flaw
2022-02-15 17:15:00
osv
osv
alpinelinux
alpinelinux
CVE-2022-25176
2022-02-15 17:15:00
cve
cve
CVE-2022-25176
2022-02-15 17:15:00
veracode
veracode
Privilege Escalation
2022-04-21 00:42:40
redhatcve
redhatcve
CVE-2022-25176
2022-02-17 16:38:20
github
github
nessus
nessus
RHEL 8 : OpenShift Container Platform 4.7.48 (RHSA-2022:1248)
2022-04-13 00:00:00
RHEL 8 : OpenShift Container Platform 4.10.6 (RHSA-2022:1025)
2022-03-29 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.6.57 (RHSA-2022:1620)
2022-05-04 00:00:00
redhat
redhat