[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Information disclosure vulnerability in Jenkins - CVE-2018-1000169 (MAC OS X)

ID: oval:org.secpod.oval:def:55971Date: (C)2019-07-05   (M)2023-12-02
Class: VULNERABILITYFamily: macos




The host is installed with Jenkins LTS through 2.107.1 or Jenkins rolling release through 2.115 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in CLICommand.java and ViewOptionHandler.java. Successful exploitation could allow unauthorized attackers to confirm the existence of agents or views with an attacker-specified name by sending a CLI command to Jenkins.

Platform:
Apple Mac OS 14
Apple Mac OS 13
Apple Mac OS 12
Apple Mac OS 11
Apple Mac OS X 10.15
Apple Mac OS X 10.8
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Apple Mac OS X 10.13
Apple Mac OS X 10.14
Product:
Jenkins LTS
Jenkins rolling release
Reference:
CVE-2018-1000169
CVE    1
CVE-2018-1000169

© SecPod Technologies