cvedb.io
CVE-2022-25204
MEDIUM · CVSS 5.4
EPSS exploitation probability: 0%
Published 2022-02-15T17:15:11.047 · Last modified 2026-06-17T04:33:12.140

Summary

Jenkins Doktor Plugin 0.4.1 and earlier implements functionality that allows agent processes to render files on the controller as Markdown or Asciidoc, and error messages allow attackers able to control agent processes to determine whether a file with a given name exists.

Affected products

jenkins — doktor

Does this affect you?

Add your gear to cvedb and we'll alert you only when jenkins ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.