CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-34175

Jenkins 2.335 through 2.355 (both inclusive) allows attackers in some cases to bypass a protection mechanism, thereby directly accessing some view fragments containing sensitive information, bypassing any permission checks in the corresponding view.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.0%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2777
https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2777

Products affected by CVE-2022-34175

Jenkins » Jenkins » Version: 2.335

cpe:2.3:a:jenkins:jenkins:2.335
Jenkins » Jenkins » Version: 2.336

cpe:2.3:a:jenkins:jenkins:2.336
Jenkins » Jenkins » Version: 2.337

cpe:2.3:a:jenkins:jenkins:2.337
Jenkins » Jenkins » Version: 2.338

cpe:2.3:a:jenkins:jenkins:2.338

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-34175

Products

Pricing

Contact Us