Vulnerability CVE-2022-45383
Published: 2022-11-15

Description:
An incorrect permission check in Jenkins Support Core Plugin 1206.v14049fa_b_d860 and earlier allows attackers with Support/DownloadBundle permission to download a previously created support bundle containing information limited to users with Overall/Administer permission.

Type:

CWE-863

 (Incorrect Authorization)

 References:
https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2804
Copyright 2026, cxsecurity.com

 

Back to Top