Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-1000114

Опубликовано: 26 фев. 2018
Источник: redhat
CVSS3: 4.3

Описание

An improper authorization vulnerability exists in Jenkins Promoted Builds Plugin 2.31.1 and earlier in Status.java and ManualCondition.java that allow an attacker with read access to jobs to perform promotions.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat OpenShift Enterprise 3jenkins-plugin-promoted-buildsAffected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-863
https://bugzilla.redhat.com/show_bug.cgi?id=1549542jenkins-plugin-promoted-builds: Promoted Builds Plugin allowed unauthorized users to run some promotion processes (SECURITY-746)

4.3 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2018-1000114

CVSS3: 4.3
nvd
почти 8 лет назад

An improper authorization vulnerability exists in Jenkins Promoted Builds Plugin 2.31.1 and earlier in Status.java and ManualCondition.java that allow an attacker with read access to jobs to perform promotions.

github логотип

GHSA-9rx5-w522-5fh7

CVSS3: 4.3
github
больше 3 лет назад

Jenkins Promoted Builds Plugin allowed unauthorized users to run some promotion processes

4.3 Medium

CVSS3