CVE-2022-20612
12.01.2022, 20:15
A cross-site request forgery (CSRF) vulnerability in Jenkins 2.329 and earlier, LTS 2.319.1 and earlier allows attackers to trigger build of job without parameters when no security realm is set.
Vendor | Product | Version |
---|---|---|
jenkins | jenkins | 𝑥 ≤ 2.319.1 |
jenkins | jenkins | 𝑥 ≤ 2.329 |
oracle | communications_cloud_native_core_automated_test_suite | 1.9.0 |
𝑥
= Vulnerable software versions

Ubuntu Releases
Common Weakness Enumeration
References