| |
Podatność CVE-2022-43432
Publikacja: 2022-10-19
Opis: |
Jenkins XFramium Builder Plugin 1.0.22 and earlier programmatically disables Content-Security-Policy protection for user-generated content in workspaces, archived artifacts, etc. that Jenkins offers for download. |
Typ:
CWE-693 (Protection Mechanism Failure)
Referencje: |
https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2863
|
|
|
Copyright 2024, cxsecurity.com
|
|
|