CVE-2022-20620
12.01.2022, 20:15
Missing permission checks in Jenkins SSH Agent Plugin 1.23 and earlier allows attackers with Overall/Read access to enumerate credentials IDs of credentials stored in Jenkins.Enginsight
Vendor | Product | Version |
---|---|---|
jenkins | ssh_agent | 𝑥 ≤ 1.23 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration