CVE-2018-1999003

Опубликовано: 23 июл. 2018

Источник: debian

EPSS Низкий

Описание

A Improper authorization vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in Queue.java that allows attackers with Overall/Read permission to cancel queued builds.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jenkins	removed			package

EPSS

Процентиль: 35%

0.00146

Низкий

Связанные уязвимости

CVE-2018-1999003

CVSS3: 4.6

redhat

больше 7 лет назад

A Improper authorization vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in Queue.java that allows attackers with Overall/Read permission to cancel queued builds.

CVE-2018-1999003

CVSS3: 4.3

nvd

больше 7 лет назад

A Improper authorization vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in Queue.java that allows attackers with Overall/Read permission to cancel queued builds.

GHSA-p265-xr98-3vmr

CVSS3: 4.3

github

больше 3 лет назад

Incorrect Authorization in Jenkins

EPSS

Процентиль: 35%

0.00146

Низкий