Lucene search

PRIOn knowledge basePRION:CVE-2019-10357

HistoryJul 31, 2019 - 1:15 p.m.

Design/Logic Flaw

2019-07-3113:15:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.8%

JSON

A missing permission check in Jenkins Pipeline: Shared Groovy Libraries Plugin 2.14 and earlier allowed users with Overall/Read access to obtain limited information about the content of SCM repositories referenced by global libraries.

CPENameOperatorVersion
openshift_container_platformeq3.11
openshift_container_platformeq4.1

CPE	Name	Operator	Version
	openshift_container_platform	eq	3.11
	openshift_container_platform	eq	4.1

References

www.openwall.com/lists/oss-security/2019/07/31/1

access.redhat.com/errata/RHSA-2019:2594

access.redhat.com/errata/RHSA-2019:2651

access.redhat.com/errata/RHSA-2019:2662

jenkins.io/security/advisory/2019-07-31/