CVE-2022-36920
Description
A cross-site request forgery (CSRF) vulnerability in Jenkins Coverity Plugin 1.11.4 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
References
Vendor Advisory
Mailing ListThird Party Advisory
CvssV3 impact
Could not find any metrics
CvssV2 impact
Could not find any metrics