Vulnerabilities > CVE-2022-43414 - Unspecified vulnerability in Jenkins Nunit

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
jenkins
NVD
Published: 2022-10-19
Updated: 2023-11-01

Summary

Jenkins NUnit Plugin 0.27 and earlier implements an agent-to-controller message that parses files inside a user-specified directory as test results, allowing attackers able to control agent processes to obtain test results from files in an attacker-specified directory on the Jenkins controller.

Vulnerable Configurations

Part Description Count
Application
Jenkins
31

References