4 matches found
CVE-2022-41242
A missing permission check in Jenkins extreme-feedback Plugin 1.7 and earlier allows attackers with Overall/Read permission to discover information about job names attached to lamps, discover MAC and IP addresses of existing lamps, and rename lamps...
CVE-2022-41242
A missing permission check in Jenkins extreme-feedback Plugin 1.7 and earlier allows attackers with Overall/Read permission to discover information about job names attached to lamps, discover MAC and IP addresses of existing lamps, and rename lamps...
CVE-2022-41242
A missing permission check in Jenkins extreme-feedback Plugin 1.7 and earlier allows attackers with Overall/Read permission to discover information about job names attached to lamps, discover MAC and IP addresses of existing lamps, and rename lamps...
CVE-2022-41242
CVE-2022-41242 affects Jenkins extreme-feedback Plugin 1.7 and earlier. Root cause: missing authorization check in an HTTP endpoint, allowing attackers with Overall/Read permission to enumerate lamp-related data (job names, MAC/IP addresses) and rename lamps. Impact is information disclosure and ...