2 matches found
CVE-2022-45399
CVE-2022-45399 : Jenkins Cluster Statistics Plugin up to version 0.4.6 contains a missing permission check on its HTTP endpoint, enabling attackers (with Overall/Read) to delete recorded Cluster Statistics. The description does not specify a patch version or mitigation, and no exploitation detail...
CVE-2022-45399
A missing permission check in Jenkins Cluster Statistics Plugin 0.4.6 and earlier allows attackers to delete recorded Jenkins Cluster Statistics...