Lucene search
PRIOn knowledge basePRION:CVE-2022-25186HistoryFeb 15, 2022 - 5:15 p.m.
Design/Logic Flaw
2022-02-1517:15:00
PRIOn knowledge base
www.prio-n.com
3
0.001 Low
EPSS
Percentile
28.4%
Jenkins HashiCorp Vault Plugin 3.8.0 and earlier implements functionality that allows agent processes to retrieve any Vault secrets for use on the agent, allowing attackers able to control agent processes to obtain Vault secrets for an attacker-specified path and key.
| CPE | Name | Operator | Version |
|---|---|---|---|
| hashicorp_vault | le | 3.8.0 |
Related
cvelist
cvelist
CVE-2022-25186
2022-02-15 16:11:11
osv
osv
Agent-to-controller security bypass in Jenkins HashiCorp Vault Plugin
2022-02-16 00:01:28
nvd
nvd
CVE-2022-25186
2022-02-15 17:15:09
veracode
veracode
Information Disclosure
2022-02-18 06:07:00
github
github
Agent-to-controller security bypass in Jenkins HashiCorp Vault Plugin
2022-02-16 00:01:28
cnvd
cnvd
Jenkins HashiCorp Vault Plugin信息泄露漏洞
2022-02-17 00:00:00
cve
cve
CVE-2022-25186
2022-02-15 17:15:09
alpinelinux
alpinelinux
CVE-2022-25186
2022-02-15 17:15:09
