exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2022-25188

больше 3 лет назад

Jenkins Fortify Plugin 20.2.34 and earlier does not sanitize the appName and appVersion parameters of its Pipeline steps, allowing attackers with Item/Configure permission to write or overwrite .xml files on the Jenkins controller file system with content not controllable by the attacker.

CVSS3: 4.3

EPSS: Низкий

GHSA-23h5-8ph6-7rfc

больше 3 лет назад

Path traversal vulnerability in Jenkins Fortify Plugin

CVSS3: 4.3

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2022-25188 Jenkins Fortify Plugin 20.2.34 and earlier does not sanitize the appName and appVersion parameters of its Pipeline steps, allowing attackers with Item/Configure permission to write or overwrite .xml files on the Jenkins controller file system with content not controllable by the attacker.	CVSS3: 4.3	0% Низкий	больше 3 лет назад
	GHSA-23h5-8ph6-7rfc Path traversal vulnerability in Jenkins Fortify Plugin	CVSS3: 4.3	0% Низкий	больше 3 лет назад

Уязвимостей на страницу