Описание
Incorrect Authorization in Jenkins Mercurial Plugin
An improper authorization vulnerability exists in Jenkins Mercurial Plugin version 2.2 and earlier in MercurialStatus.java that allows an attacker with network access to obtain a list of nodes and users.
Пакеты
Наименование
org.jenkins-ci.plugins:mercurial
maven
Затронутые версииВерсия исправления
<= 2.2
2.3
Связанные уязвимости
CVSS3: 5.3
redhat
почти 8 лет назад
An improper authorization vulnerability exists in Jenkins Mercurial Plugin version 2.2 and earlier in MercurialStatus.java that allows an attacker with network access to obtain a list of nodes and users.
CVSS3: 5.3
nvd
почти 8 лет назад
An improper authorization vulnerability exists in Jenkins Mercurial Plugin version 2.2 and earlier in MercurialStatus.java that allows an attacker with network access to obtain a list of nodes and users.