377.v8f3808963dc5

DATE	CVE	VULNERABILITY TITLE	RISK
2022-12-12	CVE-2022-46688	Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Sonar Gerrit A cross-site request forgery (CSRF) vulnerability in Jenkins Sonar Gerrit Plugin 377.v8f3808963dc5 and earlier allows attackers to have Jenkins connect to Gerrit servers (previously configured by Jenkins administrators) using attacker-specified credentials IDs obtained through another method, potentially capturing credentials stored in Jenkins. network low complexity jenkins CWE-352	6.5