Количество 2
Количество 2
CVE-2022-29049
почти 4 года назад
Jenkins promoted builds Plugin 873.v6149db_d64130 and earlier, except 3.10.1, does not validate the names of promotions defined in Job DSL, allowing attackers with Job/Configure permission to create a promotion with an unsafe name.
CVSS3: 5.4
EPSS: Низкий
GHSA-jmxr-w2jc-qp7w
почти 4 года назад
Promotion names in Jenkins promoted builds Plugin are not validated when using Job DSL
CVSS3: 8
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-29049 Jenkins promoted builds Plugin 873.v6149db_d64130 and earlier, except 3.10.1, does not validate the names of promotions defined in Job DSL, allowing attackers with Job/Configure permission to create a promotion with an unsafe name. | CVSS3: 5.4 | 2% Низкий | почти 4 года назад |
| GHSA-jmxr-w2jc-qp7w Promotion names in Jenkins promoted builds Plugin are not validated when using Job DSL | CVSS3: 8 | 2% Низкий | почти 4 года назад |
Уязвимостей на страницу
20