CVE-2018-1000192
05.06.2018, 21:29
A information exposure vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in AboutJenkins.java, ListPluginsCommand.java that allows users with Overall/Read access to enumerate all installed plugins.Enginsight
| Vendor | Product | Version |
|---|---|---|
| jenkins | jenkins | 𝑥 ≤ 2.120 |
| jenkins | jenkins | 𝑥 ≤ 2.107.2 |
| oracle | communications_cloud_native_core_automated_test_suite | 1.9.0 |
𝑥
= Vulnerable software versions