Security Advisory

CVE-2022-41231

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-21 15:45:51

Last updated 2025-05-28 14:41:51

Assigner jenkins

State PUBLISHED

Description

Jenkins Build-Publisher Plugin 1.22 and earlier allows attackers with Item/Configure permission to create or replace any config.xml file on the Jenkins controller file system by providing a crafted file name to an API endpoint.

← Browse all CVEs View on cve.org ↗