CVE-2022-41250 – A missing permission check in Jenkins SCM HttpClient Plugin 1.5 and earlier allows attacke …

21 September 2022

Vuln ID: CVE-2022-41250

Published: 2022-09-21 16:15:11Z

Description: A missing permission check in Jenkins SCM HttpClient Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.

Source: NVD.NIST.GOV

Date:

21 September 2022

Categorie(s):

NVD

Tag(s):

NVD

Check Point delivers strong quarterly revenue growth but stock drops26 April 2024
Rubrik IPO signals potential cybersecurity-led tech market revival25 April 2024
Foreign states targeting sensitive research at UK universities, MI5 warns25 April 2024
Cops cuff man for allegedly framing colleague with AI-generated hate speech clip25 April 2024
After a 19-month saga, Broadcom finally patches Brocade SANnav bugs25 April 2024