CVE-2022-38666

Improper Certificate Validation in maven/org.jenkins-ci.main/cavisson-ns-nd-integration

Identifiers

GHSA-vj5r-mmp4-3hrx, CVE-2022-38666

Package Slug

maven/org.jenkins-ci.main/cavisson-ns-nd-integration

Vulnerability

Improper Certificate Validation

Description

Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.146 and earlier unconditionally disables SSL/TLS certificate and hostname validation for several features.

Affected Versions

Version 4.8.0.146

Solution

Unfortunately, there is no solution available yet.

Last Modified

2022-11-22

source