3 matches found
CVE-2022-36899
Jenkins Compuware ISPW Operations Plugin 1.0.8 and earlier does not restrict execution of a controller/agent message to agents, allowing attackers able to control agent processes to retrieve Java system properties...
CVE-2022-36899
Jenkins Compuware ISPW Operations Plugin 1.0.8 and earlier does not restrict execution of a controller/agent message to agents, allowing attackers able to control agent processes to retrieve Java system properties...
CVE-2022-36899
Affected software: Jenkins Compuware ISPW Operations Plugin, version 1.0.8 and earlier. Root cause: The plugin does not restrict execution of a controller/agent message to agents, enabling an attacker who can control agent processes to retrieve Java system properties. Impact (as stated): unauthor...