Lucene search
China National Vulnerability DatabaseCNVD-2022-08041HistoryJan 16, 2022 - 12:00 a.m.
Jenkins Licensing Issue Vulnerability (CNVD-2022-08041)
2022-01-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
22.0%
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.The Jenkins Publish Over SSH Plugin in version 1.22 and earlier is vulnerable to an authorization issue that stems from a lack of authentication measures or insufficient authentication strength in a networked system or product. An attacker with overall/read access could exploit this vulnerability to connect to a specified SSH server using specified credentials.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jenkins publish over ssh plugin | le | 1.22 |
Related
cve
cve
CVE-2022-23112
2022-01-12 20:15:09
osv
osv
Missing permission check in Jenkins Publish Over SSH Plugin
2022-01-13 00:00:53
CVE-2022-23112
2022-01-12 20:15:09
github
github
Missing permission check in Jenkins Publish Over SSH Plugin
2022-01-13 00:00:53
cvelist
cvelist
CVE-2022-23112
2022-01-12 19:06:15
nvd
nvd
CVE-2022-23112
2022-01-12 20:15:09
prion
prion
Design/Logic Flaw
2022-01-12 20:15:00
nessus
nessus
Jenkins Enterprise and Operations Center < 2.277.43.0.5 / 2.319.2.5 Multiple Vulnerabilities (CloudBees Security Advisory 2022-01-12)
2022-02-15 00:00:00
Jenkins plugins Multiple Vulnerabilities (2022-01-12)
2022-01-21 00:00:00
Jenkins LTS < 2.319.2 / Jenkins weekly < 2.330 Multiple Vulnerabilities
2022-01-21 00:00:00