Maven package

org.jenkins-ci.plugins/rpmsign-plugin

pkg:maven/org.jenkins-ci.plugins/rpmsign-plugin

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2022-36893		—		< 0.5.1	0.5.1	Jul 27, 2022	Jenkins rpmsign-plugin Plugin 0.5.0 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Item/Read permission but without Item/Workspace or Item/Configure permission to check whether attacker-specified file patterns mat

CVE-2022-36893Jul 27, 2022
affected < 0.5.1fixed 0.5.1
Jenkins rpmsign-plugin Plugin 0.5.0 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Item/Read permission but without Item/Workspace or Item/Configure permission to check whether attacker-specified file patterns mat