Medium severity5.3NVD Advisory· Published Oct 19, 2022· Updated Jun 17, 2026
CVE-2022-43421
CVE-2022-43421
Description
A missing permission check in Jenkins Tuleap Git Branch Source Plugin 3.2.4 and earlier allows unauthenticated attackers to trigger Tuleap projects whose configured repository matches the attacker-specified value.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jenkins-ci.plugins:tuleap-git-branch-sourceMaven | < 3.2.5 | 3.2.5 |
Affected products
2- Range: unspecified
Patches
Vulnerability mechanics
References
4- www.openwall.com/lists/oss-security/2022/10/19/3nvdMailing ListThird Party AdvisoryWEB
- github.com/advisories/GHSA-73v5-w6fg-2m44ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-43421ghsaADVISORY
- www.jenkins.io/security/advisory/2022-10-19/nvdVendor AdvisoryWEB
News mentions
0No linked articles in our index yet.