CVE-2022-34179 – Jenkins Embeddable Build Status Plugin 2.0.3 and earlier allows specifying a `style` query …

23 June 2022

Vuln ID: CVE-2022-34179

Published: 2022-06-23 17:15:15Z

Description: Jenkins Embeddable Build Status Plugin 2.0.3 and earlier allows specifying a `style` query parameter that is used to choose a different SVG image style without restricting possible values, resulting in a relative path traversal vulnerability that allows attackers without Overall/Read permission to specify paths to other SVG images on the Jenkins controller file system.

Source: NVD.NIST.GOV

Date:

23 June 2022

Categorie(s):

NVD

Tag(s):

NVD

TikTok comes one step closer to a US ban24 April 2024
PoC for critical Progress Flowmon vulnerability released (CVE-2024-2389)24 April 2024
Nagomi launches with $30M to optimize enterprises’ cybersecurity toolkits24 April 2024
Leeds Talent Pool Attracts BlueVoyant’s First UK Security Operations Center24 April 2024
How Can ISO 27001 Help You Comply With Data Protection? 24 April 2024