Lucene search
GoogleOSV:GHSA-F9V6-P7HP-C3QXHistoryMay 24, 2022 - 5:10 p.m.
Missing permission checks in Jenkins P4 Plugin
2022-05-2417:10:28
Google
osv.dev
10
jenkins
p4 plugin
permission checks
overall/read permission
trigger builds
add labels
http endpoints
software
EPSS
0.001
Percentile
22.0%
A missing permission check in Jenkins P4 Plugin 1.10.10 and earlier allows attackers with Overall/Read permission to trigger builds or add labels in the Perforce repository.
P4 Plugin 1.10.11 appropriate user permissions for the affected HTTP endpoints.
Related
cve
cve
CVE-2020-2142
2020-03-09 16:15:13
nvd
nvd
CVE-2020-2142
2020-03-09 16:15:13
github
github
Missing permission checks in Jenkins P4 Plugin
2022-05-24 17:10:28
cvelist
cvelist
CVE-2020-2142
2020-03-09 15:00:59
prion
prion
Information disclosure
2020-03-09 16:15:00