Lucene search
GoogleOSV:CVE-2022-36906HistoryJul 27, 2022 - 3:15 p.m.
CVE-2022-36906
2022-07-2715:15:10
Google
osv.dev
5
jenkins
openshift deployer
csrf
vulnerability
attacker-specified url
username
password
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
35.1%
A cross-site request forgery (CSRF) vulnerability in Jenkins OpenShift Deployer Plugin 1.2.0 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified username and password.
Related
osv
osv
CSRF vulnerability in Jenkins OpenShift Deployer Plugin
2022-07-28 00:00:42
cve
cve
CVE-2022-36906
2022-07-27 15:15:10
prion
prion
Cross site request forgery (csrf)
2022-07-27 15:15:00
nvd
nvd
CVE-2022-36906
2022-07-27 15:15:10
github
github
CSRF vulnerability in Jenkins OpenShift Deployer Plugin
2022-07-28 00:00:42
cvelist
cvelist
CVE-2022-36906
2022-07-27 14:26:07
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
35.1%
Related for OSV:CVE-2022-36906