Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv3

CVE-2022-20613

Published: 12/01/2022 Updated: 22/11/2023
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 384
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Mailer

Vulnerability Summary

A cross-site request forgery (CSRF) vulnerability in Jenkins Mailer Plugin 391.ve4a_38c1b_cf4b_ and previous versions allows malicious users to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

jenkins mailer 391.ve4a_38c1b_cf4b_

jenkins mailer

oracle communications cloud native core automated test suite 1.9.0

Vendor Advisories

Red Hat: CVE-2022-20613
A cross-site request forgery (CSRF) vulnerability in Jenkins Mailer Plugin 391ve4a_38c1b_cf4b_ and earlier allows attackers to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname ...

References

CWE-352https://www.jenkins.io/security/advisory/2022-01-12/#SECURITY-2163http://www.openwall.com/lists/oss-security/2022/01/12/6https://www.oracle.com/security-alerts/cpuapr2022.htmlhttps://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2022-20613
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
client sideCVE-2023-31889template injectionCVE-2024-4304CVE-2006-4304CVE-2024-33272type confusionCVE-2024-21345CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook