Security Advisory

CVE-2022-41236

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-21 15:45:56

Last updated 2025-05-28 15:00:14

Assigner jenkins

State PUBLISHED

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins Security Inspector Plugin 117.v6eecc36919c2 and earlier allows attackers to replace the generated report stored in a per-session cache and displayed to authorized users at the .../report URL with a report based on attacker-specified report generation options.

← Browse all CVEs View on cve.org ↗