CVE-2022-36881 Information
Jul 28, 2022
cve
Description
Jenkins Git client Plugin 3.11.0 and earlier does not perform SSH host key verification when connecting to Git repositories via SSH enabling man-in-the-middle attacks.
Reference
https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1468 http://www.openwall.com/lists/oss-security/2022/07/27/1
Share on: