CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2022-07-27

unknownCVE-2022-36881CVE-2022-36882CVE-2022-36883CVE-2022-36884CVE-2022-36885CVE-2022-36886
Affects plugin: Android Signing Affects plugin: BMC AMI DevX Code Debug Code Coverage Affects plugin: BMC AMI DevX Code Pipeline Operations Affects plugin: BMC AMI DevX Source Code Download for Endevor, PDS, and Code Pipeline Affects plugin: Buckminster Affects plugin: CLIF Performance Testing Affects plugin: Compuware Topaz Utilities Affects plugin: Compuware zAdviser API Affects plugin: Coverity Affects plugin: Deployer Framework Affects plugin: Dynamic Extended Choice Parameter Affects plugin: External Monitor Job Type Affects plugin: Files Found Trigger Affects plugin: Git Affects plugin: Git client Affects plugin: GitHub Affects plugin: Google Cloud Backup Affects plugin: HashiCorp Vault Affects plugin: HTTP Request Affects plugin: Job Configuration History Affects plugin: Lucene-Search Affects plugin: Maven Metadata Plugin for Jenkins CI server Affects plugin: OpenShift Deployer Affects plugin: openstack-heat Affects plugin: Repository Connector Affects plugin: rhnpush-plugin Affects plugin: rpmsign-plugin

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2022-07-27
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2022-07-27/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2022-36881coverage & exploitation statusNVD · CVE.org
CVE-2022-36882coverage & exploitation statusNVD · CVE.org
CVE-2022-36883coverage & exploitation statusNVD · CVE.org
CVE-2022-36884coverage & exploitation statusNVD · CVE.org
CVE-2022-36885coverage & exploitation statusNVD · CVE.org
CVE-2022-36886coverage & exploitation statusNVD · CVE.org
CVE-2022-36887coverage & exploitation statusNVD · CVE.org
CVE-2022-36888coverage & exploitation statusNVD · CVE.org
CVE-2022-36889coverage & exploitation statusNVD · CVE.org
CVE-2022-36890coverage & exploitation statusNVD · CVE.org
CVE-2022-36891coverage & exploitation statusNVD · CVE.org
CVE-2022-36892coverage & exploitation statusNVD · CVE.org
CVE-2022-36893coverage & exploitation statusNVD · CVE.org
CVE-2022-36894coverage & exploitation statusNVD · CVE.org
CVE-2022-36895coverage & exploitation statusNVD · CVE.org
CVE-2022-36896coverage & exploitation statusNVD · CVE.org
CVE-2022-36897coverage & exploitation statusNVD · CVE.org
CVE-2022-36898coverage & exploitation statusNVD · CVE.org
CVE-2022-36899coverage & exploitation statusNVD · CVE.org
CVE-2022-36900coverage & exploitation statusNVD · CVE.org
CVE-2022-36901coverage & exploitation statusNVD · CVE.org
CVE-2022-36902coverage & exploitation statusNVD · CVE.org
CVE-2022-36903coverage & exploitation statusNVD · CVE.org
CVE-2022-36904coverage & exploitation statusNVD · CVE.org
CVE-2022-36905coverage & exploitation statusNVD · CVE.org
CVE-2022-36906coverage & exploitation statusNVD · CVE.org
CVE-2022-36907coverage & exploitation statusNVD · CVE.org
CVE-2022-36908coverage & exploitation statusNVD · CVE.org
CVE-2022-36909coverage & exploitation statusNVD · CVE.org
CVE-2022-36910coverage & exploitation statusNVD · CVE.org
CVE-2022-36911coverage & exploitation statusNVD · CVE.org
CVE-2022-36912coverage & exploitation statusNVD · CVE.org
CVE-2022-36913coverage & exploitation statusNVD · CVE.org
CVE-2022-36914coverage & exploitation statusNVD · CVE.org
CVE-2022-36915coverage & exploitation statusNVD · CVE.org
CVE-2022-36916coverage & exploitation statusNVD · CVE.org
CVE-2022-36917coverage & exploitation statusNVD · CVE.org
CVE-2022-36918coverage & exploitation statusNVD · CVE.org
CVE-2022-36919coverage & exploitation statusNVD · CVE.org
CVE-2022-36920coverage & exploitation statusNVD · CVE.org
CVE-2022-36921coverage & exploitation statusNVD · CVE.org
CVE-2022-36922coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories