CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2022-01-12

unknownCVE-2022-20612CVE-2022-20613CVE-2022-20614CVE-2022-20615CVE-2022-20616CVE-2022-20617
Affects Jenkins Core Affects plugin: Active Directory Affects plugin: Badge Affects plugin: batch task Affects plugin: Bitbucket Branch Source Affects plugin: Configuration as Code Affects plugin: Conjur Secrets Affects plugin: Credentials Binding Affects plugin: Debian Package Builder Affects plugin: Docker Commons Affects plugin: HashiCorp Vault Affects plugin: Mailer Affects plugin: Matrix Project Affects plugin: Metrics Affects plugin: Publish Over SSH Affects plugin: SSH Agent Affects plugin: Warnings

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2022-01-12
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2022-01-12/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2022-20612coverage & exploitation statusNVD · CVE.org
CVE-2022-20613coverage & exploitation statusNVD · CVE.org
CVE-2022-20614coverage & exploitation statusNVD · CVE.org
CVE-2022-20615coverage & exploitation statusNVD · CVE.org
CVE-2022-20616coverage & exploitation statusNVD · CVE.org
CVE-2022-20617coverage & exploitation statusNVD · CVE.org
CVE-2022-20618coverage & exploitation statusNVD · CVE.org
CVE-2022-20619coverage & exploitation statusNVD · CVE.org
CVE-2022-20620coverage & exploitation statusNVD · CVE.org
CVE-2022-20621coverage & exploitation statusNVD · CVE.org
CVE-2022-23105coverage & exploitation statusNVD · CVE.org
CVE-2022-23106coverage & exploitation statusNVD · CVE.org
CVE-2022-23107coverage & exploitation statusNVD · CVE.org
CVE-2022-23108coverage & exploitation statusNVD · CVE.org
CVE-2022-23109coverage & exploitation statusNVD · CVE.org
CVE-2022-23110coverage & exploitation statusNVD · CVE.org
CVE-2022-23111coverage & exploitation statusNVD · CVE.org
CVE-2022-23112coverage & exploitation statusNVD · CVE.org
CVE-2022-23113coverage & exploitation statusNVD · CVE.org
CVE-2022-23114coverage & exploitation statusNVD · CVE.org
CVE-2022-23115coverage & exploitation statusNVD · CVE.org
CVE-2022-23116coverage & exploitation statusNVD · CVE.org
CVE-2022-23117coverage & exploitation statusNVD · CVE.org
CVE-2022-23118coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories