CVE-2022-45379

Jenkins Script Security Plugin 1189.vb_a_b_7c8fd5fde and earlier stores whole-script approvals as the SHA-1 hash of the script, making it vulnerable to collision attacks.
Configurations

Configuration 1

cpe:2.3:a:jenkins:script_security:*:*:*:*:*:jenkins:*:*

Information

Published : 2022-11-15 08:15

Updated : 2022-11-18 08:26


NVD link : CVE-2022-45379

Mitre link : CVE-2022-45379

Products Affected
No products.
CWE
CWE-326

Inadequate Encryption Strength