CVE-2022-45383

An incorrect permission check in Jenkins Support Core Plugin 1206.v14049fa_b_d860 and earlier allows attackers with Support/DownloadBundle permission to download a previously created support bundle containing information limited to users with Overall/Administer permission.
Configurations

Configuration 1

cpe:2.3:a:jenkins:support_core:*:*:*:*:*:jenkins:*:*

Information

Published : 2022-11-15 08:15

Updated : 2022-11-21 02:42


NVD link : CVE-2022-45383

Mitre link : CVE-2022-45383

Products Affected
No products.
CWE