2 matches found
CVE-2022-20614
A missing permissions verification vulnerability was found in the Jenkins Mailer plugin. The form validation method does not perform a permission check which allows attackers with Overall/Read access to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname...
CVE-2022-20614
CVE-2022-20614 affects Jenkins Mailer Plugin 391.ve4a_38c1b_cf4b_ and earlier. The issue is a missing permission check that allows attackers with Overall/Read access to cause the Jenkins instance DNS to resolve an attacker‑specified hostname, potentially leaking information or enabling attacker‑c...