CVE-2022-41234 in Rundeck Plugininformação

Sumário

de MITRE • 21/09/2022

Jenkins Rundeck Plugin 3.6.11 and earlier does not protect access to the /plugin/rundeck/webhook/ endpoint, allowing users with Overall/Read permission to trigger jobs that are configured to be triggerable via Rundeck.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservar

21/09/2022

Divulgação

21/09/2022

Moderação

aceite

Entrada

VDB-209287

CPE

pronto

EPSS

0.00827

KEV

não

Atividades

muito baixo

Fontes

Want to stay up to date on a daily basis?

Enable the mail alert feature now!