Описание
Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available, exposing information about the Jenkins controller file system.
Ссылки
- Mailing ListThird Party Advisory
- Vendor Advisory
- Mailing ListThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.846.v23698686f0f6 (включая)
cpe:2.3:a:jenkins:folders:*:*:*:*:*:jenkins:*:*
EPSS
Процентиль: 30%
0.00109
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-532
Связанные уязвимости
CVSS3: 4.3
redhat
больше 2 лет назад
Jenkins Folders Plugin 6.846.v23698686f0f6 and earlier displays an error message that includes an absolute path of a log file when attempting to access the Scan Organization Folder Log if no logs are available, exposing information about the Jenkins controller file system.
CVSS3: 4.3
github
больше 2 лет назад
Jenkins Folders Plugin information disclosure vulnerability
EPSS
Процентиль: 30%
0.00109
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-532