Skip to main content
CVE-2022-45399 MEDIUM This Month

A missing permission check in Jenkins Cluster Statistics Plugin 0.4.6 and earlier allows attackers to delete recorded Jenkins Cluster Statistics. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Jenkins Cluster Statistics
NVD
CVSS 3.1
4.3
EPSS
0.5%
CVE-2022-45398 MEDIUM This Month

A cross-site request forgery (CSRF) vulnerability in Jenkins Cluster Statistics Plugin 0.4.6 and earlier allows attackers to delete recorded Jenkins Cluster Statistics. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Jenkins Cluster Statistics
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2022-45394 MEDIUM This Month

A missing permission check in Jenkins Delete log Plugin 1.0 and earlier allows attackers with Item/Read permission to delete build logs. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Jenkins Delete Log
NVD
CVSS 3.1
4.3
EPSS
0.5%
CVE-2022-45390 MEDIUM This Month

A missing permission check in Jenkins loader.io Plugin 1.0.1 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Jenkins Loader Io
NVD
CVSS 3.1
4.3
EPSS
0.5%
CVE-2022-40309 MEDIUM PATCH This Month

Users with write permissions to a repository can delete arbitrary directories. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Archiva
NVD
CVSS 3.1
4.3
EPSS
1.4%
CVE-2022-45393 LOW Monitor

A cross-site request forgery (CSRF) vulnerability in Jenkins Delete log Plugin 1.0 and earlier allows attackers to delete build logs. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

CSRF Jenkins Delete Log
NVD
CVSS 3.1
3.5
EPSS
0.4%
Prev Page 4 of 4

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy