3 matches found
CVE-2019-16559
A missing permission check in Jenkins WebSphere Deployer Plugin 1.6.1 and earlier allows attackers with Overall/Read permission to perform connection tests and determine whether files with an attacker-specified path exist on the Jenkins master file system...
CVE-2019-16559
A missing permission check in Jenkins WebSphere Deployer Plugin 1.6.1 and earlier allows attackers with Overall/Read permission to perform connection tests and determine whether files with an attacker-specified path exist on the Jenkins master file system...
CVE-2019-16559
CVE-2019-16559 affects Jenkins WebSphere Deployer Plugin 1.6.1 and earlier. The root cause is a missing permission check in core plugin operations, enabling users with Overall/Read to run connection tests and determine if attacker-specified file paths exist on the Jenkins master file system. Rela...