Количество 4
Количество 4
CVE-2022-36882
A cross-site request forgery (CSRF) vulnerability in Jenkins Git Plugin 4.11.3 and earlier allows attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.
CVE-2022-36882
A cross-site request forgery (CSRF) vulnerability in Jenkins Git Plugin 4.11.3 and earlier allows attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.
GHSA-8xwj-2wgh-gprh
Lack of authentication mechanism in Jenkins Git Plugin webhook
BDU:2022-06206
Уязвимость компонента Build Handler плагина Jenkins Git Plugin, позволяющая нарушителю выполнить произвольные действия на уязвимом устройстве
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-36882 A cross-site request forgery (CSRF) vulnerability in Jenkins Git Plugin 4.11.3 and earlier allows attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit. | CVSS3: 8.8 | 0% Низкий | больше 3 лет назад |
 | CVE-2022-36882 A cross-site request forgery (CSRF) vulnerability in Jenkins Git Plugin 4.11.3 and earlier allows attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit. | CVSS3: 8.8 | 0% Низкий | больше 3 лет назад |
| GHSA-8xwj-2wgh-gprh Lack of authentication mechanism in Jenkins Git Plugin webhook | CVSS3: 6.5 | 0% Низкий | больше 3 лет назад |
 | BDU:2022-06206 Уязвимость компонента Build Handler плагина Jenkins Git Plugin, позволяющая нарушителю выполнить произвольные действия на уязвимом устройстве | CVSS3: 6.1 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу