Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv3

CVE-2022-20614

Published: 12/01/2022 Updated: 22/11/2023
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 357
Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N
Subscribe to Jenkins

Vulnerability Summary

A missing permission check in Jenkins Mailer Plugin 391.ve4a_38c1b_cf4b_ and previous versions allows attackers with Overall/Read access to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

jenkins mailer 391.ve4a_38c1b_cf4b_

jenkins mailer

oracle communications cloud native core automated test suite 1.9.0

Vendor Advisories

Red Hat: CVE-2022-20614
A missing permission check in Jenkins Mailer Plugin 391ve4a_38c1b_cf4b_ and earlier allows attackers with Overall/Read access to use the DNS used by the Jenkins instance to resolve an attacker-specified hostname ...

References

CWE-862https://www.jenkins.io/security/advisory/2022-01-12/#SECURITY-2163http://www.openwall.com/lists/oss-security/2022/01/12/6https://www.oracle.com/security-alerts/cpuapr2022.htmlhttps://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2022-20614
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002CVE-2006-4304CVE-2024-4336CVE-2024-33437CVE-2024-4340CVE-2024-27956privilegeinsecure direct object referenceXSSitem search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook