Lucene search
JenkinsCVELIST:CVE-2019-10354HistoryJul 17, 2019 - 3:45 p.m.
CVE-2019-10354
2019-07-1715:45:13
jenkins
www.cve.org
1
A vulnerability in the Stapler web framework used in Jenkins 2.185 and earlier, LTS 2.176.1 and earlier allowed attackers to access view fragments directly, bypassing permission checks and possibly obtain sensitive information.
CNA Affected
[
{
"product": "Jenkins",
"vendor": "Jenkins project",
"versions": [
{
"status": "affected",
"version": "2.185 and earlier, LTS 2.176.1 and earlier"
}
]
}
]Related
cve
cve
CVE-2019-10354
2019-07-17 16:15:12
osv
osv
CVE-2019-10354
2019-07-17 16:15:12
Missing Authorization in Jenkins
2022-05-24 16:50:30
github
github
Missing Authorization in Jenkins
2022-05-24 16:50:30
prion
prion
Information disclosure
2019-07-17 16:15:00
nvd
nvd
CVE-2019-10354
2019-07-17 16:15:12
redhatcve
redhatcve
CVE-2019-10354
2019-07-17 19:21:33
veracode
veracode
Improper Access Control
2019-07-19 02:34:18
openvas
openvas
Jenkins < 2.186 and < 2.176.2 LTS Multiple Vulnerabilities - Windows
2019-07-31 00:00:00
Jenkins < 2.186 and < 2.176.2 LTS Multiple Vulnerabilities - Linux
2019-07-31 00:00:00
nessus
nessus
RHEL 7 : OpenShift Container Platform 3.11 jenkins (RHSA-2019:2503)
2019-08-20 00:00:00
RHEL 7 : OpenShift Container Platform 4.1 jenkins (RHSA-2019:2548)
2019-08-30 00:00:00
Jenkins < 2.176.2 LTS / 2.186 Multiple Vulnerabilities
2019-07-26 00:00:00
redhat
redhat
freebsd
freebsd
jenkins -- multiple vulnerabilities
2019-07-17 00:00:00