2 matches found
CVE-2022-34779
CVE-2022-34779 affects the Jenkins XebiaLabs XL Release Plugin (versions 22.0.0 and earlier). The root cause is a missing permission check, allowing attackers with Overall/Read permission to enumerate credentials IDs stored in Jenkins. This credential enumeration could facilitate further abuse wh...
CVE-2022-34779
A missing permission check in Jenkins XebiaLabs XL Release Plugin 22.0.0 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins...