6 matches found
CVE-2022-41243
Jenkins SmallTest Plugin 1.0.4 and earlier does not perform hostname validation when connecting to the configured View26 server that could be abused using a man-in-the-middle attack to intercept these connections...
Jenkins SmallTest Plugin missing hostname validation
Jenkins SmallTest Plugin 1.0.4 and earlier does not perform hostname validation when connecting to the configured View26 server that could be abused using a man-in-the-middle attack to intercept these connections. There is currently no known workaround or fix for this issue...
CVE-2022-41243
Jenkins SmallTest Plugin 1.0.4 and earlier does not perform hostname validation when connecting to the configured View26 server that could be abused using a man-in-the-middle attack to intercept these connections...
Input validation
Jenkins SmallTest Plugin 1.0.4 and earlier does not perform hostname validation when connecting to the configured View26 server that could be abused using a man-in-the-middle attack to intercept these connections...
CVE-2022-41243
Jenkins SmallTest Plugin 1.0.4 and earlier does not perform hostname validation when connecting to the configured View26 server that could be abused using a man-in-the-middle attack to intercept these connections...
PT-2022-25758 · Jenkins · Jenkins Smalltest Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins SmallTest Plugin versions 1.0.4 and earlier Description: The issue is related to the lack of hostname validation when connecting to the configured View26 server. This could be exploited using a man-in-the-middle attack to intercept...