Lucene search
China National Vulnerability DatabaseCNVD-2022-65925HistoryJun 27, 2022 - 12:00 a.m.
Jenkins Access Control Error Vulnerability (CNVD-2022-65925)
2022-06-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
0.001 Low
EPSS
Percentile
50.8%
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins versions 2.335 through 2.355 contain an access control error vulnerability that stems from the lack of an effective protection mechanism for permission checks in views. An attacker could use this vulnerability to access some view segments that contain sensitive information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Jenkins Jenkins >=2.335, | le | 2.355 |
Related
openvas
openvas
github
github
Unauthorized view fragment access in Jenkins
2022-06-24 00:00:31
alpinelinux
alpinelinux
CVE-2022-34175
2022-06-23 17:15:00
cve
cve
CVE-2022-34175
2022-06-23 17:15:15
osv
osv
CVE-2022-34175
2022-06-23 17:15:15
Unauthorized view fragment access in Jenkins
2022-06-24 00:00:31
BIT-jenkins-2022-34175
2024-03-06 10:57:08
prion
prion
Design/Logic Flaw
2022-06-23 17:15:00
cvelist
cvelist
CVE-2022-34175
2022-06-22 14:40:57
nvd
nvd
CVE-2022-34175
2022-06-23 17:15:15
redhatcve
redhatcve
CVE-2022-34175
2022-08-19 05:38:37
freebsd
freebsd
jenkins -- multiple vulnerabilities
2022-06-22 00:00:00
nessus
nessus
FreeBSD : jenkins -- multiple vulnerabilities (25be46f0-f25d-11ec-b62a-00e081b7aa2d)
2022-06-23 00:00:00
Jenkins plugins Multiple Vulnerabilities (2022-06-22)
2022-07-15 00:00:00