CVE-2013-6373

Опубликовано: 21 нояб. 2013

Источник: redhat

CVSS2: 5

EPSS Низкий

Описание

The Exclusion plugin before 0.9 for Jenkins does not properly prevent access to resource locks, which allows remote authenticated users to list and release resources via unspecified vectors.

Отчет

Not affected. This issue did not affect Jenkins as shipped with various Red Hat products, as they do not include the Jenkins Exclusion plugin.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
OpenShift Enterprise 1	jenkins	Not affected
Red Hat OpenShift Enterprise 2	jenkins	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=1032397Jenkins: lack of access control in Exclusion plugin (SECURITY-53)

EPSS

Процентиль: 60%

0.00403

Низкий

5 Medium

CVSS2

Связанные уязвимости

CVE-2013-6373

ubuntu

около 12 лет назад

The Exclusion plugin before 0.9 for Jenkins does not properly prevent access to resource locks, which allows remote authenticated users to list and release resources via unspecified vectors.

CVE-2013-6373

nvd

около 12 лет назад

The Exclusion plugin before 0.9 for Jenkins does not properly prevent access to resource locks, which allows remote authenticated users to list and release resources via unspecified vectors.

CVE-2013-6373

debian

около 12 лет назад

The Exclusion plugin before 0.9 for Jenkins does not properly prevent ...

GHSA-2q8v-439j-6p77

github

больше 3 лет назад

Jenkins Exclusion Plugin allows Access to Resource Locks

EPSS

Процентиль: 60%

0.00403

Низкий

5 Medium

CVSS2