4 matches found
CVE-2020-2261
Jenkins Perfecto Plugin 1.17 and earlier executes a command on the Jenkins controller, allowing attackers with Job/Configure permission to run arbitrary commands on the Jenkins controller...
CVE-2020-2261
Jenkins Perfecto Plugin 1.17 and earlier executes a command on the Jenkins controller, allowing attackers with Job/Configure permission to run arbitrary commands on the Jenkins controller...
CVE-2020-2261
Jenkins Perfecto Plugin 1.17 and earlier executes a command on the Jenkins controller, allowing attackers with Job/Configure permission to run arbitrary commands on the Jenkins controller...
CVE-2020-2261
CVE-2020-2261 concerns the Jenkins Perfecto Plugin (versions ≤ 1.17). The issue allows users with Job/Configure permission to cause arbitrary commands to run on the Jenkins controller by how the plugin handles Perfecto Connect Path/File Name in job configurations. The root cause is execution of a...