3 matches found
CVE-2020-2094
A missing permission check in Jenkins Health Advisor by CloudBees Plugin 3.0 and earlier allows attackers with Overall/Read permission to send a fixed email to an attacker-specific recipient...
CVE-2020-2094
CVE-2020-2094 affects Jenkins Health Advisor by CloudBees Plugin (versions 3.0 and earlier). The root issue is a missing permission check in form-validation methods, allowing attackers with Overall/Read permission to cause sending a fixed email to an attacker-specified recipient. The impact is in...
CVE-2020-2094
A missing permission check in Jenkins Health Advisor by CloudBees Plugin 3.0 and earlier allows attackers with Overall/Read permission to send a fixed email to an attacker-specific recipient...