2 matches found
CVE-2022-29049
Jenkins promoted builds Plugin 873.v6149dbd64130 and earlier, except 3.10.1, does not validate the names of promotions defined in Job DSL, allowing attackers with Job/Configure permission to create a promotion with an unsafe name...
CVE-2022-29049
CVE-2022-29049 affects Jenkins promoted builds Plugin 873.v6149db_d64130 and earlier (except 3.10.1). The issue: the plugin does not validate the names of promotions defined via Job DSL, allowing attackers with Job/Configure permission to create a promotion with an unsafe name. The description im...