CVE-2019-10293
EUVD-2022-489904.04.2019, 16:29
A missing permission check in Jenkins Kmap Plugin in KmapJenkinsBuilder.DescriptorImpl form validation methods allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| jenkins | kmap | * |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References