Vulnerability Details CVE-2022-41242
A missing permission check in Jenkins extreme-feedback Plugin 1.7 and earlier allows attackers with Overall/Read permission to discover information about job names attached to lamps, discover MAC and IP addresses of existing lamps, and rename lamps.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.7%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2022-41242
-
cpe:2.3:a:jenkins:extreme-feedback:1.0
-
cpe:2.3:a:jenkins:extreme-feedback:1.1
-
cpe:2.3:a:jenkins:extreme-feedback:1.2
-
cpe:2.3:a:jenkins:extreme-feedback:1.3
-
cpe:2.3:a:jenkins:extreme-feedback:1.4
-
cpe:2.3:a:jenkins:extreme-feedback:1.5
-
cpe:2.3:a:jenkins:extreme-feedback:1.6
-
cpe:2.3:a:jenkins:extreme-feedback:1.7