CVE-2017-1000108
05.10.2017, 01:29
The Pipeline: Input Step Plugin by default allowed users with Item/Read access to a pipeline to interact with the step to provide input. This has been changed, and now requires users to have the Item/Build permission instead.Enginsight
| Vendor | Product | Version |
|---|---|---|
| jenkins | pipeline-input-step | 2.0 |
| jenkins | pipeline-input-step | 2.1 |
| jenkins | pipeline-input-step | 2.2 |
| jenkins | pipeline-input-step | 2.3 |
| jenkins | pipeline-input-step | 2.4 |
| jenkins | pipeline-input-step | 2.5 |
| jenkins | pipeline-input-step | 2.6 |
| jenkins | pipeline-input-step | 2.7 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration