cbcvebase.
CVE-2022-29048
published 2022-04-12

CVE-2022-29048: A cross-site request forgery (CSRF) vulnerability in Jenkins Subversion Plugin 2.15.3 and earlier allows attackers to connect to an attacker-specified URL.

medium4.3CVSS 3.1
AVNACLPRNUIRSUCNILAN
A cross-site request forgery (CSRF) vulnerability in Jenkins Subversion Plugin 2.15.3 and earlier allows attackers to connect to an attacker-specified URL.

Affected

27 ranges· showing 25
VendorProductVersion rangeFixed in
applemacos>= 12.0 < 12.512.5
applemacos_monterey
jenkinsbuild_step_plugin
jenkinscoordinator_plugin
jenkinscredentials_plugin
jenkinscvs_plugin
jenkinsdeprecated_groovy_libraries_plugin
jenkinsextended_choice_parameter_plugin
jenkinsgerrit_trigger_plugin
jenkinsgit_parameter_plugin
jenkinsgoogle_compute_engine_plugin
jenkinsinput_step_plugin
jenkinsjira_plugin
jenkinsjob_dsl_plugin
jenkinsjob_generator_plugin
jenkinsmask_passwords_plugin
jenkinsmaven_release_plugin
jenkinsnode_and_label_parameter_plugin
jenkinspromotion_names_in_promoted_builds_plugin
jenkinspublish_over_ftp_plugin
jenkinsrebuilder_plugin
jenkinsrelease_plugin
jenkinsshow_build_parameters_plugin
jenkinssubversion<= 2.15.3
jenkinssubversion_plugin