CVE-2022-45379
maven/org.jenkins-ci.plugins/script-security
Inadequate Encryption Strength
Jenkins Script Security Plugin 1189.vbab_7c8fd5fde and earlier stores whole-script approvals as the SHA-1 hash of the script, making it vulnerable to collision attacks.
All versions before 1190.v65867aa47126
Upgrade to version 1190.v65867aa47126 or above.
2022-11-21
source |