CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-20614

A missing permission check in Jenkins Mailer Plugin 391.ve4a_38c1b_cf4b_ and earlier allows attackers with Overall/Read access to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.022

EPSS Ranking 83.7%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

References

Products affected by CVE-2022-20614

Jenkins » Mailer » Version: 1.1

cpe:2.3:a:jenkins:mailer:1.1
Jenkins » Mailer » Version: 1.10

cpe:2.3:a:jenkins:mailer:1.10
Jenkins » Mailer » Version: 1.11

cpe:2.3:a:jenkins:mailer:1.11
Jenkins » Mailer » Version: 1.12

cpe:2.3:a:jenkins:mailer:1.12
Jenkins » Mailer » Version: 1.13

cpe:2.3:a:jenkins:mailer:1.13
Jenkins » Mailer » Version: 1.14

cpe:2.3:a:jenkins:mailer:1.14
Jenkins » Mailer » Version: 1.15

cpe:2.3:a:jenkins:mailer:1.15
Jenkins » Mailer » Version: 1.16

cpe:2.3:a:jenkins:mailer:1.16
Jenkins » Mailer » Version: 1.17

cpe:2.3:a:jenkins:mailer:1.17
Jenkins » Mailer » Version: 1.18

cpe:2.3:a:jenkins:mailer:1.18
Jenkins » Mailer » Version: 1.19

cpe:2.3:a:jenkins:mailer:1.19
Jenkins » Mailer » Version: 1.2

cpe:2.3:a:jenkins:mailer:1.2
Jenkins » Mailer » Version: 1.20

cpe:2.3:a:jenkins:mailer:1.20
Jenkins » Mailer » Version: 1.21

cpe:2.3:a:jenkins:mailer:1.21
Jenkins » Mailer » Version: 1.22

cpe:2.3:a:jenkins:mailer:1.22
Jenkins » Mailer » Version: 1.23

cpe:2.3:a:jenkins:mailer:1.23
Jenkins » Mailer » Version: 1.24

cpe:2.3:a:jenkins:mailer:1.24
Jenkins » Mailer » Version: 1.25

cpe:2.3:a:jenkins:mailer:1.25
Jenkins » Mailer » Version: 1.26

cpe:2.3:a:jenkins:mailer:1.26
Jenkins » Mailer » Version: 1.27

cpe:2.3:a:jenkins:mailer:1.27
Jenkins » Mailer » Version: 1.28

cpe:2.3:a:jenkins:mailer:1.28
Jenkins » Mailer » Version: 1.29

cpe:2.3:a:jenkins:mailer:1.29
Jenkins » Mailer » Version: 1.29.1

cpe:2.3:a:jenkins:mailer:1.29.1
Jenkins » Mailer » Version: 1.3

cpe:2.3:a:jenkins:mailer:1.3
Jenkins » Mailer » Version: 1.30

cpe:2.3:a:jenkins:mailer:1.30
Jenkins » Mailer » Version: 1.31

cpe:2.3:a:jenkins:mailer:1.31
Jenkins » Mailer » Version: 1.31.1

cpe:2.3:a:jenkins:mailer:1.31.1
Jenkins » Mailer » Version: 1.32

cpe:2.3:a:jenkins:mailer:1.32
Jenkins » Mailer » Version: 1.32.1

cpe:2.3:a:jenkins:mailer:1.32.1
Jenkins » Mailer » Version: 1.33

cpe:2.3:a:jenkins:mailer:1.33
Jenkins » Mailer » Version: 1.34

cpe:2.3:a:jenkins:mailer:1.34
Jenkins » Mailer » Version: 1.4

cpe:2.3:a:jenkins:mailer:1.4
Jenkins » Mailer » Version: 1.5

cpe:2.3:a:jenkins:mailer:1.5
Jenkins » Mailer » Version: 1.6

cpe:2.3:a:jenkins:mailer:1.6
Jenkins » Mailer » Version: 1.7

cpe:2.3:a:jenkins:mailer:1.7
Jenkins » Mailer » Version: 1.8

cpe:2.3:a:jenkins:mailer:1.8
Jenkins » Mailer » Version: 391.ve4a_38c1b_cf4b_

cpe:2.3:a:jenkins:mailer:391.ve4a_38c1b_cf4b_
Oracle » Communications Cloud Native Core Automated Test Suite » Version: 1.9.0

cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-20614

Products

Pricing

Contact Us