Published: 12/01/2022 Updated: 22/11/2023

CVSS v2 Base Score: 2.6 | Impact Score: 2.9 | Exploitability Score: 4.9

CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8

VMScore: 232

Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N

A cross-site request forgery (CSRF) vulnerability in Jenkins 2.329 and previous versions, LTS 2.319.1 and previous versions allows malicious users to trigger build of job without parameters when no security realm is set.

Vulnerable Product	Search on Vulmon	Subscribe to Product
jenkins jenkins
oracle communications cloud native core automated test suite 1.9.0

Synopsis Important: OpenShift Container Platform 311634 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic Red Hat OpenShift Container Platform release 311634 is now available withupdates to packages and ...

Synopsis Important: OpenShift Container Platform 4743 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic Red Hat OpenShift Container Platform release 4743 is now available withupdates to packages and imag ...

Synopsis Important: OpenShift Container Platform 4831 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic Red Hat OpenShift Container Platform release 4831 is now available withupdates to packages and imag ...

Synopsis Important: OpenShift Container Platform 4655 packages and security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic Red Hat OpenShift Container Platform release 4655 is now available with updates to pac ...

Synopsis Important: OpenShift Container Platform 4919 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic Red Hat OpenShift Container Platform release 4919 is now available withupdates to packages and imag ...

Synopsis Moderate: OpenShift Container Platform 4743 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4743 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Container Platfo ...

Synopsis Important: Red Hat Advanced Cluster Management 236 security updates and bug fixes Type/Severity Security Advisory: Important Topic Red Hat Advanced Cluster Management for Kubernetes 236 General Availabilityrelease images, which provide security updates and bug fixes Description Red Hat Advanced Cluster Management for Kubernete ...

A cross-site request forgery (CSRF) vulnerability in Jenkins 2329 and earlier, LTS 23191 and earlier allows attackers to trigger build of job without parameters when no security realm is set ...

CWE-352 https://www.jenkins.io/security/advisory/2022-01-12/#SECURITY-2558 http://www.openwall.com/lists/oss-security/2022/01/12/6 https://www.oracle.com/security-alerts/cpuapr2022.html https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2022:0555

CVE-2022-20612

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect