Lucene search

K
cvelistJenkinsCVELIST:CVE-2022-36917
HistoryJul 27, 2022 - 2:28 p.m.

CVE-2022-36917

2022-07-2714:28:21
jenkins
www.cve.org
2
jenkins
google cloud
backup plugin
permission check
attackers
manual backup
cve-2022-36917

AI Score

5.1

Confidence

High

EPSS

0.001

Percentile

22.0%

A missing permission check in Jenkins Google Cloud Backup Plugin 0.6 and earlier allows attackers with Overall/Read permission to request a manual backup.

CNA Affected

[
  {
    "product": "Jenkins Google Cloud Backup Plugin",
    "vendor": "Jenkins project",
    "versions": [
      {
        "lessThanOrEqual": "0.6",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "unknown",
        "version": "next of 0.6",
        "versionType": "custom"
      }
    ]
  }
]

AI Score

5.1

Confidence

High

EPSS

0.001

Percentile

22.0%

Related for CVELIST:CVE-2022-36917