VDB

CESS-2022-34209

CESS-2022-34209 PUBLISHED CVSS 6.5 MEDIUM

A cross-site request forgery (CSRF) vulnerability in Jenkins ThreadFix Plugin 1.5.4 and earlier allows attackers to connect to an attacker-specified URL.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Timeline

  • Jun 23, 2022 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›