[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Information disclosure vulnerability in Git Client Plugin for Jenkins

ID: oval:org.secpod.oval:def:42683Date: (C)2017-11-10   (M)2022-07-04
Class: VULNERABILITYFamily: unix




The host is installed with Git Client Plugin before 2.4.4 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly set permissions on the temporary files. Successful exploitation could allow attackers to read sensitive information by reading files from a restricted directory. Successful exploitation could allow attackers to disclose sensitive information.

Platform:
Linux
Product:
Git Client Plugin for Jenkins
Reference:
CVE-2017-1000242
CVE    1
CVE-2017-1000242
CPE    1
cpe:/a:jenkins:git-client-plugin

© SecPod Technologies