CSRF in Jenkins Openstack Heat Plugin 1.5 & Earlier External URL Access
CVE-2022-36911 Published on July 27, 2022

A cross-site request forgery (CSRF) vulnerability in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers to connect to an attacker-specified URL.

NVD

Products Associated with CVE-2022-36911

Want to know whenever a new CVE is published for Jenkins Openstack Heat? stack.watch will email you.

Jenkins Openstack Heat

Affected Versions

Jenkins project Jenkins Openstack Heat Plugin:

Version unspecified, <= 1.5 is affected.
Version next of 1.5 and below unspecified is unknown.

Exploit Probability

EPSS

0.07%

Percentile

21.54%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CSRF in Jenkins Openstack Heat Plugin 1.5 & Earlier External URL AccessCVE-2022-36911 Published on July 27, 2022

Products Associated with CVE-2022-36911

Affected Versions

Exploit Probability

CSRF in Jenkins Openstack Heat Plugin 1.5 & Earlier External URL Access
CVE-2022-36911 Published on July 27, 2022