Jenkins ThreadFix Plugin Licensing Issue Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.An authorization issue vulnerability exists in Jenkins ThreadFix Plugin version 1.5.4 and earlier, which stems from the plugin’s failure to perform permission check. An attacker with overall/read permissions could use this vulnerability to connect to the URL specified by the attacker.