Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2022-41249
- EPSS 0.13%
- Published 21.09.2022 16:15:11
- Last modified 27.05.2025 19:15:24
A cross-site request forgery (CSRF) vulnerability in Jenkins SCM HttpClient Plugin 1.5 and earlier allows attackers to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing cr...
6.5
CVE-2022-41250
- EPSS 0.68%
- Published 21.09.2022 16:15:11
- Last modified 27.05.2025 19:15:24
A missing permission check in Jenkins SCM HttpClient Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, captur...
1