Lucene search
GoogleOSV:GHSA-HJ36-V72X-CC6JHistoryMay 24, 2022 - 5:27 p.m.
Missing permission checks in Jenkins Database Plugin
2022-05-2417:27:06
Google
osv.dev
6
0.001 Low
EPSS
Percentile
22.2%
A missing permission check in Jenkins database Plugin 1.6 and earlier allows attackers with Overall/Read access to Jenkins to connect to an attacker-specified database server using attacker-specified credentials.
Database Plugin 1.7 requires Overall/Administer permission for the affected form validation method.
Related
cvelist
cvelist
CVE-2020-2242
2020-09-01 13:50:32
cve
cve
CVE-2020-2242
2020-09-01 14:15:12
prion
prion
Design/Logic Flaw
2020-09-01 14:15:00
nvd
nvd
CVE-2020-2242
2020-09-01 14:15:12
github
github
Missing permission checks in Jenkins Database Plugin
2022-05-24 17:27:06
osv
osv
CVE-2020-2242
2020-09-01 14:15:12