4.3
CVSSv3

CVE-2022-36898

Published: 27/07/2022 Updated: 02/11/2023
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 0

Vulnerability Summary

A missing permission check in Jenkins Compuware ISPW Operations Plugin 1.0.8 and previous versions allows attackers with Overall/Read permission to enumerate hosts and ports of Compuware configurations and credentials IDs of credentials stored in Jenkins.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

jenkins compuware ispw operations