Количество 2
Количество 2
CVE-2024-5273
Jenkins Report Info Plugin 1.2 and earlier does not perform path validation of the workspace directory while serving report files, allowing attackers with Item/Configure permission to retrieve Surefire failures, PMD violations, Findbugs bugs, and Checkstyle errors on the controller file system by editing the workspace path.
GHSA-cw5r-jx8r-9f7x
Jenkins Report Info Plugin Path Traversal vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-5273 Jenkins Report Info Plugin 1.2 and earlier does not perform path validation of the workspace directory while serving report files, allowing attackers with Item/Configure permission to retrieve Surefire failures, PMD violations, Findbugs bugs, and Checkstyle errors on the controller file system by editing the workspace path. | CVSS3: 4.3 | 0% Низкий | больше 1 года назад |
| GHSA-cw5r-jx8r-9f7x Jenkins Report Info Plugin Path Traversal vulnerability | CVSS3: 4.3 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу