CVE-2019-10357
A missing permission check in Jenkins Pipeline: Shared Groovy Libraries Plugin 2.14 and earlier allowed users with Overall/Read access to obtain limited information about the content of SCM repositories referenced by global libraries.
Date published : 2019-07-31
https://jenkins.io/security/advisory/2019-07-31/#SECURITY1422