| |
Podatność CVE-2022-43429
Publikacja: 2022-10-19
| Opis: |
Jenkins Compuware Topaz for Total Test Plugin 2.4.8 and earlier implements an agent/controller message that does not limit where it can be executed, allowing attackers able to control agent processes to read arbitrary files on the Jenkins controller file system. |
Typ:
CWE-693 (Protection Mechanism Failure)
Referencje: |
https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2624
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
Polish
English