Jenkins - Cloudbees Aws Credentials CVE

Filtered by vendor Jenkins Subscribe

Filtered by product Cloudbees Aws Credentials

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-27198	1 Jenkins	1 Cloudbees Aws Credentials	2023-11-22	6.0 MEDIUM	8.0 HIGH
A cross-site request forgery (CSRF) vulnerability in Jenkins CloudBees AWS Credentials Plugin 189.v3551d5642995 and earlier allows attackers with Overall/Read permission to connect to an AWS service using an attacker-specified token.

Vulnerabilities (CVE)