CVE-2022-45399
Missing Authorization in maven/org.zeroturnaround/cluster-stats
Identifiers
GHSA-w8wg-62wf-62gm, CVE-2022-45399
Package Slug
maven/org.zeroturnaround/cluster-stats
Vulnerability
Missing Authorization
Description
A missing permission check in Jenkins Cluster Statistics Plugin 0.4.6 and earlier allows attackers to delete recorded Jenkins Cluster Statistics.
Affected Versions
All versions up to 0.4.6
Solution
Unfortunately, there is no solution available yet.
Last Modified
2022-11-22
| source |