CVE-2022-23118
CVSS v3.1
8.8 (High)
CVSS v2.0
9 (High)
EPSS
0.10 % (43th)
Affected Products
1
Advisories
2
Jenkins Debian Package Builder Plugin 1.6.11 and earlier implements functionality that allows agents to invoke command-line git
at an attacker-specified path on the controller, allowing attackers able to control agent processes to invoke arbitrary OS commands on the controller.
Weaknesses
- CWE-668
- Exposure of Resource to Wrong Sphere
- CVE Status
- PUBLISHED
- CNA
- Jenkins Project
- Published Date
-
2022-01-12 20:15:09
(2 years ago) - Updated Date
-
2023-11-30 19:15:28
(9 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...