Lucene search
PRIOn knowledge basePRION:CVE-2022-25173HistoryFeb 15, 2022 - 5:15 p.m.
Design/Logic Flaw
2022-02-1517:15:00
PRIOn knowledge base
www.prio-n.com
2
Jenkins Pipeline: Groovy Plugin 2648.va9433432b33c and earlier uses the same checkout directories for distinct SCMs when reading the script file (typically Jenkinsfile) for Pipelines, allowing attackers with Item/Configure permission to invoke arbitrary OS commands on the controller through crafted SCM contents.
Related
github
github
veracode
veracode
OS Command Injection
2022-04-21 00:42:14
alpinelinux
alpinelinux
CVE-2022-25173
2022-02-15 17:15:08
nvd
nvd
CVE-2022-25173
2022-02-15 17:15:08
cvelist
cvelist
CVE-2022-25173
2022-02-15 16:10:50
cve
cve
CVE-2022-25173
2022-02-15 17:15:08
osv
osv
redhatcve
redhatcve
CVE-2022-25173
2022-02-17 15:47:50
nessus
nessus
RHEL 8 : OpenShift Container Platform 4.10.6 (RHSA-2022:1025)
2022-03-29 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.6.57 (RHSA-2022:1620)
2022-05-04 00:00:00
RHEL 8 : OpenShift Container Platform 4.7.48 (RHSA-2022:1248)
2022-04-13 00:00:00
redhat
redhat