Security Advisory

CVE-2022-20617

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-12 19:05:53

Last updated 2024-08-03 02:17:52

Assigner jenkins

State PUBLISHED

Description

Jenkins Docker Commons Plugin 1.17 and earlier does not sanitize the name of an image or a tag, resulting in an OS command execution vulnerability exploitable by attackers with Item/Configure permission or able to control the contents of a previously configured jobs SCM repository.

← Browse all CVEs View on cve.org ↗