GHSA-3vwm-fc87-mq6h, CVE-2022-45391
maven/io.jenkins.plugins/cavisson-ns-nd-integration
Improper Certificate Validation
Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.143 and earlier globally and unconditionally disables SSL/TLS certificate and hostname validation for the entire Jenkins controller JVM.
All versions before 4.8.0.143
Upgrade to version 4.8.0.143 or above.
2022-11-22
source |