Jenkins

Kubernetes Continuous Deploy

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2022-27208

  • EPSS 0.57%
  • Published 15.03.2022 17:15:11
  • Last modified 21.11.2024 06:55:24

Jenkins Kubernetes Continuous Deploy Plugin 2.3.1 and earlier allows users with Credentials/Create permission to read arbitrary files on the Jenkins controller.

6.5

CVE-2022-27209

  • EPSS 0.75%
  • Published 15.03.2022 17:15:11
  • Last modified 21.11.2024 06:55:24

A missing permission check in Jenkins Kubernetes Continuous Deploy Plugin 2.3.1 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.

6.5

CVE-2022-27210

  • EPSS 0.09%
  • Published 15.03.2022 17:15:11
  • Last modified 21.11.2024 06:55:25

A cross-site request forgery (CSRF) vulnerability in Jenkins Kubernetes Continuous Deploy Plugin 2.3.1 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another metho...

6.5

CVE-2022-27211

  • EPSS 0.75%
  • Published 15.03.2022 17:15:11
  • Last modified 21.11.2024 06:55:25

A missing permission check in Jenkins Kubernetes Continuous Deploy Plugin 2.3.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another...