CVE-2018-1000015
23.01.2018, 14:29
On Jenkins instances with Authorize Project plugin, the authentication associated with a build may lack the Computer/Build permission on some agents. This did not prevent the execution of Pipeline `node` blocks on those agents due to incorrect permissions checks in Pipeline: Nodes and Processes plugin 2.17 and earlier.Enginsight
Vendor | Product | Version |
---|---|---|
jenkins | pipeline_nodes_and_processes | 𝑥 ≤ 2.17 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration