CVE-2022-28148

The file browser in Jenkins Continuous Integration with Toad Edge Plugin 2.3 and earlier may interpret some paths to files as absolute on Windows, resulting in a path traversal vulnerability allowing attackers with Item/Read permission to obtain the contents of arbitrary files on Windows controllers.
Configurations

Configuration 1


Information

Published : 2022-03-29 01:15

Updated : 2022-04-04 08:26


NVD link : CVE-2022-28148

Mitre link : CVE-2022-28148

Products Affected
No products.
CWE