Описание
Improper authorization vulnerability in Jenkins Mesos Plugin
An improper authorization vulnerability exists in Jenkins Mesos Plugin 0.17.1 and earlier in MesosCloud.java that allows attackers with Overall/Read access to obtain credentials IDs for credentials stored in Jenkins.
Пакеты
Наименование
org.jenkins-ci.plugins:mesos
maven
Затронутые версииВерсия исправления
<= 0.17.1
0.18
Связанные уязвимости
CVSS3: 6.5
nvd
больше 6 лет назад
An improper authorization vulnerability exists in Jenkins Mesos Plugin 0.17.1 and earlier in MesosCloud.java that allows attackers with Overall/Read access to obtain credentials IDs for credentials stored in Jenkins.