Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2017-2599

Опубликовано: 01 фев. 2017
Источник: redhat
CVSS3: 5.4

Описание

Jenkins before versions 2.44 and 2.32.2 is vulnerable to an insufficient permission check. This allows users with permissions to create new items (e.g. jobs) to overwrite existing items they don't have access to (SECURITY-321).

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat OpenShift Enterprise 2jenkinsUnder investigation
Red Hat OpenShift Enterprise 3jenkinsUnder investigation

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-863
https://bugzilla.redhat.com/show_bug.cgi?id=1418698jenkins: Items could be created with same name as existing item (SECURITY-321)

5.4 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2017-2599

CVSS3: 5.4
ubuntu
почти 8 лет назад

Jenkins before versions 2.44 and 2.32.2 is vulnerable to an insufficient permission check. This allows users with permissions to create new items (e.g. jobs) to overwrite existing items they don't have access to (SECURITY-321).

nvd логотип

CVE-2017-2599

CVSS3: 5.4
nvd
почти 8 лет назад

Jenkins before versions 2.44 and 2.32.2 is vulnerable to an insufficient permission check. This allows users with permissions to create new items (e.g. jobs) to overwrite existing items they don't have access to (SECURITY-321).

debian логотип

CVE-2017-2599

CVSS3: 5.4
debian
почти 8 лет назад

Jenkins before versions 2.44 and 2.32.2 is vulnerable to an insufficie ...

github логотип

GHSA-7r4h-2h23-6jq9

CVSS3: 5.4
github
больше 3 лет назад

Incorrect Authorization in Jenkins

5.4 Medium

CVSS3