Lucene search
MitreCVELIST:CVE-2018-1000186HistoryJun 05, 2018 - 8:00 p.m.
CVE-2018-1000186
2018-06-0520:00:00
mitre
www.cve.org
3
vulnerability
jenkins
github
pull request builder
plugin
ghprbgithubauth
overall
read access
url
credentials
EPSS
0.001
Percentile
28.4%
A exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin 1.41.0 and older in GhprbGitHubAuth.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
Related
cve
cve
CVE-2018-1000186
2018-06-05 20:29:00
osv
osv
Jenkins GitHub Pull Request Builder Plugin credential capture vulnerability
2022-05-14 03:13:13
CVE-2018-1000186
2018-06-05 20:29:00
github
github
Jenkins GitHub Pull Request Builder Plugin credential capture vulnerability
2022-05-14 03:13:13
prion
prion
Design/Logic Flaw
2018-06-05 20:29:00
nvd
nvd
CVE-2018-1000186
2018-06-05 20:29:00