Описание
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| jenkins | removed | package |
EPSS
Процентиль: 65%
0.005
Низкий
Связанные уязвимости
CVSS3: 4.3
redhat
почти 3 года назад
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents.
CVSS3: 4.3
nvd
почти 3 года назад
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents.
CVSS3: 4.3
github
почти 3 года назад
Incorrect Permission Preservation in Jenkins Core
EPSS
Процентиль: 65%
0.005
Низкий