CVE-2022-27215

Publication date

2022-03-15 16:46:07

Family

jenkins

State

PUBLISHED

Description

A missing permission check in Jenkins Release Helper Plugin 1.3.3 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials.