CVE-2022-28134
29.03.2022, 13:15
Jenkins Bitbucket Server Integration Plugin 3.1.0 and earlier does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to create, view, and delete BitBucket Server consumers.Enginsight
| Vendor | Product | Version |
|---|---|---|
| jenkins | bitbucket_server_integration | 𝑥 ≤ 3.1.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration