Lucene search
JenkinsCVELIST:CVE-2019-10352HistoryJul 17, 2019 - 3:45 p.m.
CVE-2019-10352
2019-07-1715:45:13
jenkins
www.cve.org
A path traversal vulnerability in Jenkins 2.185 and earlier, LTS 2.176.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java allowed attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory, resulting in an arbitrary file write on the Jenkins master when scheduling a build.
CNA Affected
[
{
"product": "Jenkins",
"vendor": "Jenkins project",
"versions": [
{
"status": "affected",
"version": "2.185 and earlier, LTS 2.176.1 and earlier"
}
]
}
]Related
osv
osv
Improper Limitation of a Pathname to a Restricted Directory in Jenkins
2022-05-24 16:50:30
CVE-2019-10352
2019-07-17 16:15:12
redhatcve
redhatcve
CVE-2019-10352
2020-03-18 05:12:44
veracode
veracode
Directory Traversal
2019-08-16 00:17:47
checkpoint_advisories
checkpoint_advisories
Jenkins Core Directory Traversal (CVE-2019-10352)
2020-02-25 00:00:00
prion
prion
Path traversal
2019-07-17 16:15:00
cve
cve
CVE-2019-10352
2019-07-17 16:15:12
github
github
Improper Limitation of a Pathname to a Restricted Directory in Jenkins
2022-05-24 16:50:30
nvd
nvd
CVE-2019-10352
2019-07-17 16:15:12
openvas
openvas
Jenkins < 2.186 and < 2.176.2 LTS Multiple Vulnerabilities - Linux
2019-07-31 00:00:00
Jenkins < 2.186 and < 2.176.2 LTS Multiple Vulnerabilities - Windows
2019-07-31 00:00:00
nessus
nessus
RHEL 7 : OpenShift Container Platform 3.11 jenkins (RHSA-2019:2503)
2019-08-20 00:00:00
RHEL 7 : OpenShift Container Platform 4.1 jenkins (RHSA-2019:2548)
2019-08-30 00:00:00
Jenkins < 2.176.2 LTS / 2.186 Multiple Vulnerabilities
2019-07-26 00:00:00
redhat
redhat
freebsd
freebsd
jenkins -- multiple vulnerabilities
2019-07-17 00:00:00
4.7 Medium
AI Score
Confidence
High
0.528 Medium
EPSS
Percentile
97.6%
Related for CVELIST:CVE-2019-10352