Security Advisory

CVE-2022-36881

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-27 14:20:49
Last updated 2024-08-03 10:14:29
Assigner jenkins
State PUBLISHED

Description

Jenkins Git client Plugin 3.11.0 and earlier does not perform SSH host key verification when connecting to Git repositories via SSH, enabling man-in-the-middle attacks.