Vulnerability CVE-2022-36884
Published: 2022-07-27

Description:
The webhook endpoint in Jenkins Git Plugin 4.11.3 and earlier provide unauthenticated attackers information about the existence of jobs configured to use an attacker-specified Git repository.

Type:

CWE-200

 (Information Exposure)

 References:
https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284
Copyright 2024, cxsecurity.com

 

Back to Top