Lucene search
PRIOn knowledge basePRION:CVE-2022-20617HistoryJan 12, 2022 - 8:15 p.m.
Command injection
2022-01-1220:15:00
PRIOn knowledge base
www.prio-n.com
4
Jenkins Docker Commons Plugin 1.17 and earlier does not sanitize the name of an image or a tag, resulting in an OS command execution vulnerability exploitable by attackers with Item/Configure permission or able to control the contents of a previously configured job’s SCM repository.
| CPE | Name | Operator | Version |
|---|---|---|---|
| docker_commons | le | 1.17 |
Related
cve
cve
CVE-2022-20617
2022-01-12 20:15:08
github
github
OS command execution vulnerability in Jenkins Docker Commons Plugin
2022-01-13 00:01:03
nvd
nvd
CVE-2022-20617
2022-01-12 20:15:08
osv
osv
OS command execution vulnerability in Jenkins Docker Commons Plugin
2022-01-13 00:01:03
CVE-2022-20617
2022-01-12 20:15:08
redhatcve
redhatcve
CVE-2022-20617
2022-01-24 18:05:39
veracode
veracode
Remote Code Execution (RCE)
2022-03-08 23:55:42
cvelist
cvelist
CVE-2022-20617
2022-01-12 19:05:53
nessus
nessus
RHEL 8 : OpenShift Container Platform 4.6.55 (RHSA-2022:0565)
2022-02-25 00:00:00
RHEL 8 : OpenShift Container Platform 4.9.19 (RHSA-2022:0339)
2022-02-10 00:00:00
RHEL 8 : OpenShift Container Platform 4.8.31 (RHSA-2022:0483)
2022-02-16 00:00:00
redhat
redhat