CVE-2022-34810

Summary

A missing check in Jenkins RQM Plugin 2.8 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins RQM Pluginunspecified <= 2.8affected
Jenkins projectJenkins RQM Pluginnext of 2.8 < unspecifiedunknown

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References