CVE-2022-30946

Summary

A cross-site request forgery (CSRF) vulnerability in Jenkins Script Security Plugin 1158.v7c1b_73a_69a_08 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-specified webserver.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Script Security Pluginunspecified <= 1158.v7c1b_73a_69a_08affected
Jenkins projectJenkins Script Security Plugin1.78.1unaffected
Jenkins projectJenkins Script Security Plugin1145.1148.vf6d17a_a_a_eef6unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References