Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-36891HistoryJul 27, 2022 - 3:15 p.m.
CVE-2022-36891
2022-07-2715:15:09
Alpine Linux Development Team
security.alpinelinux.org
28
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
0.001 Low
EPSS
Percentile
22.0%
A missing permission check in Jenkins Deployer Framework Plugin 85.v1d1888e8c021 and earlier allows attackers with Item/Read permission but without Deploy Now/Deploy permission to read deployment logs.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.16-community | noarch | jenkins | = 2.346.2-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | jenkins | = 2.361.2-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | jenkins | = 2.387.3-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | jenkins | = 2.440.3-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | jenkins | = 2.440.2-r0 | UNKNOWN |
| Alpine | edge-community | noarch | jenkins | = 2.452.2-r0 | UNKNOWN |
Related
cve
cve
CVE-2022-36891
2022-07-27 15:15:09
prion
prion
Information disclosure
2022-07-27 15:15:00
nvd
nvd
CVE-2022-36891
2022-07-27 15:15:09
github
github
osv
osv
cvelist
cvelist
CVE-2022-36891
2022-07-27 14:22:53
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
0.001 Low
EPSS
Percentile
22.0%
Related for ALPINE:CVE-2022-36891