3 matches found
CVE-2020-2282
Jenkins Implied Labels Plugin 0.6 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to configure the plugin...
CVE-2020-2282
CVE-2020-2282 affects Jenkins’ Implied Labels Plugin (versions ≤ 0.6). The issue is a missing permission check on an HTTP endpoint, which allows attackers with Overall/Read permission to reconfigure the plugin. The problem is fixed in version 0.7, which enforces that only users with Overall/Admin...
CVE-2020-2282
Jenkins Implied Labels Plugin 0.6 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to configure the plugin...