CVE-2020-2103

Опубликовано: 29 янв. 2020

Источник: redhat

CVSS3: 4.4

Описание

Jenkins 2.218 and earlier, LTS 2.204.1 and earlier exposed session identifiers on a user's detail object in the whoAmI diagnostic page.

Статус:

Moderate

Дефект:

CWE-200

https://bugzilla.redhat.com/show_bug.cgi?id=1797062jenkins: Exposed session identifiers on user detail object in the whoAmI diagnostic page

4.4 Medium

CVSS3

CVE-2020-2103

CVSS3: 5.4

nvd

около 6 лет назад

Jenkins 2.218 and earlier, LTS 2.204.1 and earlier exposed session identifiers on a user's detail object in the whoAmI diagnostic page.

CVE-2020-2103

CVSS3: 5.4

debian

около 6 лет назад

Jenkins 2.218 and earlier, LTS 2.204.1 and earlier exposed session ide ...

GHSA-4jjj-cm7q-v6hr

CVSS3: 5.4

github

больше 3 лет назад

Jenkins Diagnostic page exposed session cookies

4.4 Medium

CVSS3