Количество 2
Количество 2
CVE-2022-30958
больше 3 лет назад
A cross-site request forgery (CSRF) vulnerability in Jenkins SSH Plugin 2.6.1 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
CVSS3: 8.8
EPSS: Низкий
GHSA-9g33-48jh-jq7v
больше 3 лет назад
Cross Site Request Forgery in Jenkins SSH Plugin
CVSS3: 7.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-30958 A cross-site request forgery (CSRF) vulnerability in Jenkins SSH Plugin 2.6.1 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | CVSS3: 8.8 | 0% Низкий | больше 3 лет назад |
| GHSA-9g33-48jh-jq7v Cross Site Request Forgery in Jenkins SSH Plugin | CVSS3: 7.1 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20