CVE-2022-23116 in Conjur Secrets Plugin
Zusammenfassung
von MITRE • 12.01.2022
Jenkins Conjur Secrets Plugin 1.0.9 and earlier implements functionality that allows attackers able to control agent processes to decrypt secrets stored in Jenkins obtained through another method.
Once again VulDB remains the best source for vulnerability data.