Описание
Disabled permissions can be granted by Jenkins SSH2 Easy Plugin
Jenkins SSH2 Easy Plugin 1.4 and earlier does not verify that permissions configured to be granted are enabled, potentially allowing users formerly granted (typically optional permissions, like Overall/Manage) to access functionality they're no longer entitled to.
Пакеты
Наименование
org.jenkins-ci.plugins:ssh2easy
maven
Затронутые версииВерсия исправления
< 1.6
1.6
Связанные уязвимости
CVSS3: 8.8
nvd
больше 2 лет назад
Jenkins SSH2 Easy Plugin 1.4 and earlier does not verify that permissions configured to be granted are enabled, potentially allowing users formerly granted (typically optional permissions, like Overall/Manage) to access functionality they're no longer entitled to.