logo
DATABASE RESOURCES PRICING ABOUT US

Jenkins Snow Commander Plugin Access Control Error Vulnerability

Description

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Snow Commander Plugin 2.0 and earlier versions are vulnerable to an access control error that stems from not performing permission checks in methods that implement form validation. An attacker could use this vulnerability to connect to an attacker-specified Web server via an attacker-specified credential ID to capture credentials stored in Jenkins.


Affected Software


CPE Name Name Version
jenkins snow commander plugin 2.0

Related