3 matches found
CVE-2022-20620
Missing permission checks in Jenkins SSH Agent Plugin 1.23 and earlier allows attackers with Overall/Read access to enumerate credentials IDs of credentials stored in Jenkins...
CVE-2022-20620
Missing permission checks in Jenkins SSH Agent Plugin 1.23 and earlier allows attackers with Overall/Read access to enumerate credentials IDs of credentials stored in Jenkins...
CVE-2022-20620
CVE-2022-20620 affects Jenkins SSH Agent Plugin (versions 1.23 and earlier). The root cause is missing permission checks in several HTTP endpoints, allowing attackers with Overall/Read access to enumerate credentials IDs of credentials stored in Jenkins. This could facilitate credential exposure ...