Jenkins Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2022-20612 - Vulnerability Database

Jenkins Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2022-20612

Medium

Reference: CVE-2022-20612

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-20612

Title: Jenkins Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

A cross-site request forgery (CSRF) vulnerability in Jenkins 2.329 and earlier LTS 2.319.1 and earlier allows attackers to trigger build of job without parameters when no security realm is set.