CVE-2018-1000151
The CVE-2018-1000151 entry concerns Jenkins vSphere Plugin (versions 2.16 and older) where VSphere.java disables SSL/TLS certificate validation by default, creating a man‑in‑the‑middle risk. Connected documents corroborate the issue across multiple advisories (Red Hat, SUSE, GitHub GHSA, OSV, NVD...