Description
A cross-site request forgery (CSRF) vulnerability in Jenkins Warnings Plugin 5.0.1 and earlier allows attackers to execute arbitrary code.
Remediation
References
https://www.jenkins.io/security/advisory/2020-09-23/#SECURITY-2042
http://www.openwall.com/lists/oss-security/2020/09/23/1
Related Vulnerabilities
CVE-2020-2255 Vulnerability in maven package io.jenkins.blueocean:blueocean-parent
CVE-2023-25721 Vulnerability in maven package com.veracode.jenkins:veracode-scan
CVE-2014-0119 Vulnerability in maven package org.apache.tomcat:tomcat-util-scan
CVE-2022-45381 Vulnerability in maven package org.jenkins-ci.plugins:pipeline-utility-steps
CVE-2022-33140 Vulnerability in maven package org.apache.nifi.registry:nifi-registry-core