Lucene search
JenkinsCVELIST:CVE-2022-45379HistoryNov 15, 2022 - 12:00 a.m.
CVE-2022-45379
2022-11-1500:00:00
jenkins
www.cve.org
7
jenkins
script security
sha-1
collision attacks
Jenkins Script Security Plugin 1189.vb_a_b_7c8fd5fde and earlier stores whole-script approvals as the SHA-1 hash of the script, making it vulnerable to collision attacks.
CNA Affected
[
{
"product": "Jenkins Script Security Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "1189.vb_a_b_7c8fd5fde",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "1175.1179.vea_f7532629e1"
}
]
}
]Related
osv
osv
CVE-2022-45379
2022-11-15 20:15:11
redhatcve
redhatcve
CVE-2022-45379
2022-11-16 02:55:58
alpinelinux
alpinelinux
CVE-2022-45379
2022-11-15 20:15:11
prion
prion
Design/Logic Flaw
2022-11-15 20:15:00
veracode
veracode
Collision Attack
2023-03-07 00:49:51
github
github
cve
cve
CVE-2022-45379
2022-11-15 20:15:11
nvd
nvd
CVE-2022-45379
2022-11-15 20:15:11
ibm
ibm
nessus
nessus
RHEL 8 : OpenShift Container Platform 4.10.51 (RHSA-2023:0560)
2024-04-28 00:00:00
RHCOS 4 : OpenShift Container Platform 4.10.51 (RHSA-2023:0560)
2024-01-24 00:00:00
Jenkins plugins Multiple Vulnerabilities (2022-11-15)
2023-08-04 00:00:00
redhat
redhat