CVE-2022-45379

UNKNOWN 0.0

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Jenkins Script Security Plugin 1189.vb_a_b_7c8fd5fde and earlier stores whole-script approvals as the SHA-1 hash of the script, making it vulnerable to collision attacks.

Vendor	jenkins project
Product	jenkins script security plugin
Published	Nov 15, 2022
Last Updated	Aug 3, 2024

Stay Ahead of the Next One

Get instant alerts for jenkins project jenkins script security plugin

Be the first to know when new unknown vulnerabilities affecting jenkins project jenkins script security plugin are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Jenkins project / Jenkins Script Security Plugin

unspecified ≤ 1189.vb_a_b_7c8fd5fde

References

NVD ↗ CVE.org ↗ EPSS Data ↗

jenkins.io: https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564 openwall.com: http://www.openwall.com/lists/oss-security/2022/11/15/4