2 matches found
CVE-2022-36910
Jenkins Lucene-Search Plugin 370.v62a5f618cd3a and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to reindex the database and to obtain information about jobs otherwise inaccessible to them...
CVE-2022-36910
The CVE-2022-36910 issue affects the Jenkins Lucene-Search Plugin (versions 370.v62a5f618cd3a and earlier). The underlying problem is missing permission checks on several HTTP endpoints, which allows users with Overall/Read privileges to reindex the database and access information about jobs they...