3 matches found
CVE-2022-30959
A missing permission check in Jenkins SSH Plugin 2.6.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...
CVE-2022-30959
creationtimestamp| type| source ---|---|--- 2022-05-17 18:27:38+00:00| seen| https://t.me/cibsecurity/42812...
CVE-2022-30959
CVE-2022-30959 affects Jenkins SSH Plugin 2.6.1 and earlier. A missing permission check lets attackers with Overall/Read access connect to an attacker‑specified SSH server using credentials IDs obtained by other means, enabling capture of credentials stored in Jenkins. The description does not sp...