CVE-2022-25197
Jenkins HashiCorp Vault Plugin 336.v182c0fbaaeb7 and earlier implements functionality that allows agent processes to read arbitrary files on the Jenkins controller file system.
Date published : 2022-02-15
https://www.jenkins.io/security/advisory/2022-02-15/#SECURITY-2521