6.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.7%
Jenkins Favorite Plugin up to and including 2.1.0 does not perform permission checks when changing favorite status, allowing any user to set any other user’s favorites
www.securityfocus.com/bid/101946
github.com/jenkinsci/favorite-plugin
jenkins.io/security/advisory/2017-06-06
nvd.nist.gov/vuln/detail/CVE-2017-1000243