Lucene search

K
cvelistJenkinsCVELIST:CVE-2022-34782
HistoryJun 30, 2022 - 5:46 p.m.

CVE-2022-34782

2022-06-3017:46:21
jenkins
www.cve.org
3
cve-2022-34782
jenkins
permission check
requests-plugin plugin

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

22.0%

An incorrect permission check in Jenkins requests-plugin Plugin 2.2.16 and earlier allows attackers with Overall/Read permission to view the list of pending requests.

CNA Affected

[
  {
    "product": "Jenkins requests-plugin Plugin",
    "vendor": "Jenkins project",
    "versions": [
      {
        "lessThanOrEqual": "2.2.16",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

22.0%

Related for CVELIST:CVE-2022-34782