CVE-2022-34785

Jenkins build-metrics Plugin 1.3 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to obtain information about jobs otherwise inaccessible to them. (CVSS:4.0) (Last Update:2022-07-08)Latest security vulnerabilities (Gain Information) (CVSS score >= 4)   

More To Explore