CVE-2022-25195

Summary

A missing permission check in Jenkins autonomiq Plugin 1.15 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins autonomiq Pluginunspecified <= 1.15affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References