Lucene search
GitHub Advisory DatabaseGHSA-6473-GQRJ-4P65HistoryFeb 16, 2022 - 12:01 a.m.
Improper Link Resolution Before File Access in Jenkins Pipeline: Groovy Plugin
2022-02-1600:01:34
CWE-59
GitHub Advisory Database
github.com
12
0.001 Low
EPSS
Percentile
28.1%
Jenkins Pipeline: Groovy Plugin 2648.va9433432b33c and earlier follows symbolic links to locations outside of the checkout directory for the configured SCM when reading the script file (typically Jenkinsfile) for Pipelines, allowing attackers able to configure Pipelines to read arbitrary files on the Jenkins controller file system.
Related
prion
prion
Design/Logic Flaw
2022-02-15 17:15:00
alpinelinux
alpinelinux
CVE-2022-25176
2022-02-15 17:15:00
cve
cve
CVE-2022-25176
2022-02-15 17:15:00
osv
osv
cvelist
cvelist
CVE-2022-25176
2022-02-15 16:10:55
veracode
veracode
Privilege Escalation
2022-04-21 00:42:40
redhatcve
redhatcve
CVE-2022-25176
2022-02-17 16:38:20
nessus
nessus
RHEL 8 : OpenShift Container Platform 4.7.48 (RHSA-2022:1248)
2022-04-13 00:00:00
RHEL 8 : OpenShift Container Platform 4.10.6 (RHSA-2022:1025)
2022-03-29 00:00:00
RHEL 7 : OpenShift Container Platform 3.11.685 (RHSA-2022:1420)
2022-04-27 00:00:00
redhat
redhat