vulnerability

Alpine Linux: CVE-2022-20612: Cross-Site Request Forgery (CSRF)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:N/AC:H/Au:N/C:N/I:P/A:N)	2022-01-12	2024-08-22	2024-10-02

Severity

CVSS

(AV:N/AC:H/Au:N/C:N/I:P/A:N)

Published

2022-01-12

Added

2024-08-22

Modified

2024-10-02

Description

A cross-site request forgery (CSRF) vulnerability in Jenkins 2.329 and earlier, LTS 2.319.1 and earlier allows attackers to trigger build of job without parameters when no security realm is set.

Solution

alpine-linux-upgrade-jenkins

References

CVE-2022-20612
https://attackerkb.com/topics/CVE-2022-20612
URL-https://security.alpinelinux.org/vuln/CVE-2022-20612

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today