Lucene search
JenkinsCVELIST:CVE-2022-30948HistoryMay 17, 2022 - 2:06 p.m.
CVE-2022-30948
2022-05-1714:06:07
jenkins
www.cve.org
1
Jenkins Mercurial Plugin 2.16 and earlier allows attackers able to configure pipelines to check out some SCM repositories stored on the Jenkins controller’s file system using local paths as SCM URLs, obtaining limited information about other projects’ SCM contents.
CNA Affected
[
{
"product": "Jenkins Mercurial Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "2.16",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "2.15.1"
}
]
}
]Related
osv
osv
Path traversal in Jenkins Mercurial Plugin
2022-05-18 00:00:39
CVE-2022-30948
2022-05-17 15:15:08
prion
prion
Code injection
2022-05-17 15:15:00
github
github
Path traversal in Jenkins Mercurial Plugin
2022-05-18 00:00:39
cve
cve
CVE-2022-30948
2022-05-17 15:15:08
redhatcve
redhatcve
CVE-2022-30948
2022-08-19 04:38:38
nvd
nvd
CVE-2022-30948
2022-05-17 15:15:08
alpinelinux
alpinelinux
CVE-2022-30948
2022-05-17 15:15:08
nessus
nessus
RHEL 8 : OpenShift Container Platform 4.8.56 (RHSA-2023:0017)
2024-04-28 00:00:00
RHCOS 4 : OpenShift Container Platform 4.8.56 (RHSA-2023:0017)
2024-01-24 00:00:00
Jenkins plugins Multiple Vulnerabilities (2022-05-17)
2022-06-16 00:00:00
redhat
redhat