CVE-2022-34211

Summary

A cross-site request forgery (CSRF) vulnerability in Jenkins vRealize Orchestrator Plugin 3.0 and earlier allows attackers to send an HTTP POST request to an attacker-specified URL.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins vRealize Orchestrator Pluginunspecified <= 3.0affected
Jenkins projectJenkins vRealize Orchestrator Pluginnext of 3.0 < unspecifiedunknown

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References