Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-20612) - Vulnerability Database

Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-20612)

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins 2.329 and earlier, LTS 2.319.1 and earlier allows attackers to trigger build of job without parameters when no security realm is set.

References

CVE-2022-20612

Related Vulnerabilities

Artifactory Deserialization of Untrusted Data Vulnerability (CVE-2022-0573) High
Common tags: Missing Update Known Vulnerabilities
SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1453) High
Common tags: Missing Update Known Vulnerabilities
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1345) Medium
Common tags: Missing Update Known Vulnerabilities
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2020-1439) High
Common tags: Missing Update Known Vulnerabilities
SharePoint CVE-2020-1440 Vulnerability (CVE-2020-1440) Medium
Common tags: Missing Update Known Vulnerabilities

Severity

Medium

Classification

CVE-2022-20612
CWE-352
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Tags

Missing Update
Known Vulnerabilities