0.001 Low
EPSS
Percentile
27.2%
A cross-site request forgery vulnerability exists in Jenkins JUnit Plugin 1.25 and earlier in TestObject.java that allows setting the description of a test result.
bugzilla.redhat.com/show_bug.cgi?id=1639388
www.cve.org/CVERecord?id=CVE-2018-1000411 https://nvd.nist.gov/vuln/detail/CVE-2018-1000411 https://github.com/jenkinsci/junit-plugin/commit/091ee0dc8dd6023713827ce1a5914fa9fa9b6043 https://jenkins.io/security/advisory/2018-09-25/#SECURITY-1101