Vulnerabilities

CVE-2017-2609

by Fred · 22/05/2018

jenkins before versions 2.44, 2.32.2 is vulnerable to an information disclosure vulnerability in search suggestions (SECURITY-385). The autocomplete feature on the search box discloses the names of the views in its suggestions, including the ones for which the current user does not have access to.

Date published : 2018-05-22

http://www.securityfocus.com/bid/95964

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2609

Similar

Tags: Cybersecurity Alert