Information disclosure vulnerability in Git Client Plugin for JenkinsID: oval:org.secpod.oval:def:42683 | Date: (C)2017-11-10 (M)2022-07-04 |
Class: VULNERABILITY | Family: unix |
The host is installed with Git Client Plugin before 2.4.4 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly set permissions on the temporary files. Successful exploitation could allow attackers to read sensitive information by reading files from a restricted directory. Successful exploitation could allow attackers to disclose sensitive information.
Product: |
Git Client Plugin for Jenkins |