2 matches found
CVE-2022-34212
A missing permission check in Jenkins vRealize Orchestrator Plugin 3.0 and earlier allows attackers with Overall/Read permission to send an HTTP POST request to an attacker-specified URL...
CVE-2022-34212
CVE-2022-34212 : Jenkins vRealize Orchestrator Plugin 3.0 and earlier has a missing permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to send a POST request to an attacker-specified URL. The issue is part of a broader set of Jenkins plugin vulnerabilities repor...