Lucene search
PRIOn knowledge basePRION:CVE-2022-23106HistoryJan 12, 2022 - 8:15 p.m.
Authentication flaw
2022-01-1220:15:00
PRIOn knowledge base
www.prio-n.com
6
0.001 Low
EPSS
Percentile
33.5%
Jenkins Configuration as Code Plugin 1.55 and earlier used a non-constant time comparison function when validating an authentication token allowing attackers to use statistical methods to obtain a valid authentication token.
| CPE | Name | Operator | Version |
|---|---|---|---|
| configuration_as_code | le | 1.55 |
Related
cvelist
cvelist
CVE-2022-23106
2022-01-12 00:00:00
osv
osv
CVE-2022-23106
2022-01-12 20:15:09
github
github
redhatcve
redhatcve
CVE-2022-23106
2022-01-24 16:54:05
cve
cve
CVE-2022-23106
2022-01-12 20:15:09
nvd
nvd
CVE-2022-23106
2022-01-12 20:15:09
nessus
nessus
Jenkins LTS < 2.319.2 / Jenkins weekly < 2.330 Multiple Vulnerabilities
2022-01-21 00:00:00
Jenkins plugins Multiple Vulnerabilities (2022-01-12)
2022-01-21 00:00:00