GHSA-f7fq-wp2x-jc25, CVE-2022-41235
maven/org.jenkins-ci.plugins/wildfly-deployer
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Jenkins WildFly Deployer Plugin 1.0.2 and earlier implements functionality that allows agent processes to read arbitrary files on the Jenkins controller file system.
All versions up to 1.0.2
Unfortunately, there is no solution available yet.
2022-09-27
source |