CVE-2022-20618
EUVD-2022-071112.01.2022, 20:15
A missing permission check in Jenkins Bitbucket Branch Source Plugin 737.vdf9dc06105be and earlier allows attackers with Overall/Read access to enumerate credentials IDs of credentials stored in Jenkins.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| jenkins | bitbucket_branch_source | 𝑥 ≤ 2.9.10 |
| jenkins | bitbucket_branch_source | 737.vdf9dc06105be:vdf9dc06105be |
𝑥
= Vulnerable software versions
Common Weakness Enumeration