CVE-2019-1003017
06.02.2019, 16:29
A data modification vulnerability exists in Jenkins Job Import Plugin 3.0 and earlier in JobImportAction.java that allows attackers to copy jobs from a preconfigured other Jenkins instance, potentially installing additional plugins necessary to load the imported job's configuration.
| Vendor | Product | Version |
|---|---|---|
| jenkins | job_import | 𝑥 ≤ 3.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration