CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2022-06-22

unknownCVE-2022-34170CVE-2022-34171CVE-2022-34172CVE-2022-34173CVE-2022-34174CVE-2022-34175
Affects Jenkins Core Affects plugin: Agent Server Parameter Affects plugin: Beaker builder Affects plugin: Convertigo Mobile Platform Affects plugin: CRX Content Package Deployer Affects plugin: Date Parameter Affects plugin: Dynamic Extended Choice Parameter Affects plugin: EasyQA Affects plugin: Embeddable Build Status Affects plugin: Filesystem List Parameter Affects plugin: Hidden Parameter Affects plugin: Image Tag Parameter Affects plugin: Jianliao Notification Affects plugin: JUnit Affects plugin: Maven Metadata Plugin for Jenkins CI server Affects plugin: Nested View Affects plugin: NS-ND Integration Performance Publisher Affects plugin: ontrack Jenkins Affects plugin: Package Version Affects plugin: Pipeline: Input Step Affects plugin: Readonly Parameter Affects plugin: Repository Connector Affects plugin: REST List Parameter Affects plugin: Sauce OnDemand Affects plugin: Squash TM Publisher (Squash4Jenkins) Affects plugin: Stash Branch Parameter Affects plugin: ThreadFix Affects plugin: vRealize Orchestrator Affects plugin: xUnit

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2022-06-22
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2022-06-22/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2022-34170coverage & exploitation statusNVD · CVE.org
CVE-2022-34171coverage & exploitation statusNVD · CVE.org
CVE-2022-34172coverage & exploitation statusNVD · CVE.org
CVE-2022-34173coverage & exploitation statusNVD · CVE.org
CVE-2022-34174coverage & exploitation statusNVD · CVE.org
CVE-2022-34175coverage & exploitation statusNVD · CVE.org
CVE-2022-34176coverage & exploitation statusNVD · CVE.org
CVE-2022-34177coverage & exploitation statusNVD · CVE.org
CVE-2022-34178coverage & exploitation statusNVD · CVE.org
CVE-2022-34179coverage & exploitation statusNVD · CVE.org
CVE-2022-34180coverage & exploitation statusNVD · CVE.org
CVE-2022-34181coverage & exploitation statusNVD · CVE.org
CVE-2022-34182coverage & exploitation statusNVD · CVE.org
CVE-2022-34183coverage & exploitation statusNVD · CVE.org
CVE-2022-34184coverage & exploitation statusNVD · CVE.org
CVE-2022-34185coverage & exploitation statusNVD · CVE.org
CVE-2022-34186coverage & exploitation statusNVD · CVE.org
CVE-2022-34187coverage & exploitation statusNVD · CVE.org
CVE-2022-34188coverage & exploitation statusNVD · CVE.org
CVE-2022-34189coverage & exploitation statusNVD · CVE.org
CVE-2022-34190coverage & exploitation statusNVD · CVE.org
CVE-2022-34191coverage & exploitation statusNVD · CVE.org
CVE-2022-34192coverage & exploitation statusNVD · CVE.org
CVE-2022-34193coverage & exploitation statusNVD · CVE.org
CVE-2022-34194coverage & exploitation statusNVD · CVE.org
CVE-2022-34195coverage & exploitation statusNVD · CVE.org
CVE-2022-34196coverage & exploitation statusNVD · CVE.org
CVE-2022-34197coverage & exploitation statusNVD · CVE.org
CVE-2022-34198coverage & exploitation statusNVD · CVE.org
CVE-2017-2601coverage & exploitation statusNVD · CVE.org
CVE-2022-34199coverage & exploitation statusNVD · CVE.org
CVE-2022-34200coverage & exploitation statusNVD · CVE.org
CVE-2022-34201coverage & exploitation statusNVD · CVE.org
CVE-2022-34202coverage & exploitation statusNVD · CVE.org
CVE-2022-34203coverage & exploitation statusNVD · CVE.org
CVE-2022-34204coverage & exploitation statusNVD · CVE.org
CVE-2022-34205coverage & exploitation statusNVD · CVE.org
CVE-2022-34206coverage & exploitation statusNVD · CVE.org
CVE-2022-34207coverage & exploitation statusNVD · CVE.org
CVE-2022-34208coverage & exploitation statusNVD · CVE.org
CVE-2022-34209coverage & exploitation statusNVD · CVE.org
CVE-2022-34210coverage & exploitation statusNVD · CVE.org
CVE-2022-34211coverage & exploitation statusNVD · CVE.org
CVE-2022-34212coverage & exploitation statusNVD · CVE.org
CVE-2022-34213coverage & exploitation statusNVD · CVE.org

Same CVEs, other sources

How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.

More from Jenkins Security Advisories