Vulnerabilities > Jenkins > Hashicorp Vault > 336.v182c0fbaaeb7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-27 | CVE-2022-36888 | Missing Authorization vulnerability in Jenkins Hashicorp Vault A missing permission check in Jenkins HashiCorp Vault Plugin 354.vdb_858fd6b_f48 and earlier allows attackers with Overall/Read permission to obtain credentials stored in Vault with attacker-specified path and keys. | 6.5 |
| 2022-02-15 | CVE-2022-25197 | Unspecified vulnerability in Jenkins Hashicorp Vault Jenkins HashiCorp Vault Plugin 336.v182c0fbaaeb7 and earlier implements functionality that allows agent processes to read arbitrary files on the Jenkins controller file system. | 6.5 |