CVE-2020-2216
02.07.2020, 15:15
A missing permission check in Jenkins Zephyr for JIRA Test Management Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified username and password.Enginsight
| Vendor | Product | Version |
|---|---|---|
| jenkins | zephyr_for_jira_test_management | 𝑥 ≤ 1.5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration