CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jenkins: >> Rhnpush-Plugin >> 0.1 Security Vulnerabilities

CVE-2022-36892

Jenkins rhnpush-plugin Plugin 0.5.1 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Item/Read permission but without Item/Workspace or Item/Configure permission to check whether attacker-specified file patterns match workspace contents.

CVSS Score

4.3

EPSS Score

0.001

Published

2022-07-27

Page 1

Vulnerabilities

Vulnerable Software

Jenkins: >> Rhnpush-Plugin >> 0.1 Security Vulnerabilities

Products

Pricing

Contact Us