4 matches found
CVE-2022-28158
A missing permission check in Jenkins Pipeline: Phoenix AutoTest Plugin 1.3 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...
CVE-2022-28158
A missing permission check in Jenkins Pipeline: Phoenix AutoTest Plugin 1.3 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...
CVE-2022-28158
A missing permission check in Jenkins Pipeline: Phoenix AutoTest Plugin 1.3 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...
CVE-2022-28158
CVE-2022-28158 affects Jenkins Pipeline: Phoenix AutoTest Plugin (1.3 and earlier). The vulnerability stems from a missing permission check across multiple HTTP endpoints, enabling an attacker with Overall/Read permissions to enumerate credentials IDs stored in Jenkins. The provided connected doc...