Vulnerability Details CVE-2024-2216
A missing permission check in an HTTP endpoint in Jenkins docker-build-step Plugin 2.11 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified TCP or Unix socket URL, and to reconfigure the plugin using the provided connection test parameters, affecting future build step executions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.8%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2024-2216
-
cpe:2.3:a:jenkins:docker-build-step:1.0
-
cpe:2.3:a:jenkins:docker-build-step:1.1
-
cpe:2.3:a:jenkins:docker-build-step:1.10
-
cpe:2.3:a:jenkins:docker-build-step:1.11
-
cpe:2.3:a:jenkins:docker-build-step:1.12
-
cpe:2.3:a:jenkins:docker-build-step:1.13
-
cpe:2.3:a:jenkins:docker-build-step:1.14
-
cpe:2.3:a:jenkins:docker-build-step:1.15
-
cpe:2.3:a:jenkins:docker-build-step:1.16
-
cpe:2.3:a:jenkins:docker-build-step:1.17
-
cpe:2.3:a:jenkins:docker-build-step:1.18
-
cpe:2.3:a:jenkins:docker-build-step:1.19
-
cpe:2.3:a:jenkins:docker-build-step:1.2
-
cpe:2.3:a:jenkins:docker-build-step:1.20
-
cpe:2.3:a:jenkins:docker-build-step:1.21
-
cpe:2.3:a:jenkins:docker-build-step:1.22
-
cpe:2.3:a:jenkins:docker-build-step:1.23
-
cpe:2.3:a:jenkins:docker-build-step:1.24
-
cpe:2.3:a:jenkins:docker-build-step:1.25
-
cpe:2.3:a:jenkins:docker-build-step:1.26
-
cpe:2.3:a:jenkins:docker-build-step:1.27
-
cpe:2.3:a:jenkins:docker-build-step:1.28
-
cpe:2.3:a:jenkins:docker-build-step:1.29
-
cpe:2.3:a:jenkins:docker-build-step:1.3
-
cpe:2.3:a:jenkins:docker-build-step:1.30
-
cpe:2.3:a:jenkins:docker-build-step:1.31
-
cpe:2.3:a:jenkins:docker-build-step:1.32
-
cpe:2.3:a:jenkins:docker-build-step:1.33
-
cpe:2.3:a:jenkins:docker-build-step:1.34
-
cpe:2.3:a:jenkins:docker-build-step:1.35
-
cpe:2.3:a:jenkins:docker-build-step:1.37
-
cpe:2.3:a:jenkins:docker-build-step:1.38
-
cpe:2.3:a:jenkins:docker-build-step:1.39
-
cpe:2.3:a:jenkins:docker-build-step:1.4
-
cpe:2.3:a:jenkins:docker-build-step:1.40
-
cpe:2.3:a:jenkins:docker-build-step:1.41
-
cpe:2.3:a:jenkins:docker-build-step:1.42
-
cpe:2.3:a:jenkins:docker-build-step:1.43
-
cpe:2.3:a:jenkins:docker-build-step:1.5
-
cpe:2.3:a:jenkins:docker-build-step:1.6
-
cpe:2.3:a:jenkins:docker-build-step:1.7
-
cpe:2.3:a:jenkins:docker-build-step:1.8
-
cpe:2.3:a:jenkins:docker-build-step:1.9
-
cpe:2.3:a:jenkins:docker-build-step:2.0
-
cpe:2.3:a:jenkins:docker-build-step:2.1
-
cpe:2.3:a:jenkins:docker-build-step:2.10
-
cpe:2.3:a:jenkins:docker-build-step:2.11
-
cpe:2.3:a:jenkins:docker-build-step:2.2
-
cpe:2.3:a:jenkins:docker-build-step:2.3
-
cpe:2.3:a:jenkins:docker-build-step:2.4
-
cpe:2.3:a:jenkins:docker-build-step:2.5
-
cpe:2.3:a:jenkins:docker-build-step:2.6
-
cpe:2.3:a:jenkins:docker-build-step:2.7
-
cpe:2.3:a:jenkins:docker-build-step:2.8
-
cpe:2.3:a:jenkins:docker-build-step:2.9