Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:25 a.m.8 views

CVE-2022-25208

A missing permission check in Jenkins Chef Sinatra Plugin 1.20 and earlier allows attackers with Overall/Read permission to have Jenkins send an HTTP request to an attacker-controlled URL and have it parse an XML response...

8.8CVSS6.6AI score0.01097EPSS
Exploits0References1
Circl
Circl
added 2022/02/15 8:35 p.m.6 views

CVE-2022-25208

creationtimestamp| type| source ---|---|--- 2022-02-15 20:35:31+00:00| seen| https://t.me/cibsecurity/37510...

8.8CVSS8.1AI score0.01097EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/02/15 5:15 p.m.5 views

CVE-2022-25208

A missing permission check in Jenkins Chef Sinatra Plugin 1.20 and earlier allows attackers with Overall/Read permission to have Jenkins send an HTTP request to an attacker-controlled URL and have it parse an XML response...

8.8CVSS7.3AI score0.01097EPSS
Exploits0References3
OSV
OSV
added 2022/02/15 5:15 p.m.32 views

CVE-2022-25208

A missing permission check in Jenkins Chef Sinatra Plugin 1.20 and earlier allows attackers with Overall/Read permission to have Jenkins send an HTTP request to an attacker-controlled URL and have it parse an XML response...

8.8CVSS8.8AI score
Exploits0References2
CVE
CVE
added 2022/02/15 4:11 p.m.138 views

CVE-2022-25208

Affected software: Jenkins Chef Sinatra Plugin (versions 1.20 and earlier). Root cause: Missing permission checks in a form validation method allow an attacker with Overall/Read permission to cause Jenkins to send an HTTP request to an attacker-controlled URL and parse the XML response; the XML p...

8.8CVSS8.4AI score0.01097EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder