Lucene search
+L

5 matches found

RedHat Linux
RedHat Linux
added 2021/12/02 10:4 p.m.4 views

jenkins: FilePath#unzip and FilePath#untar were not subject to any access control

An incorrect access control vulnerability was found in Jenkins. The FilePathunzip and FilePathuntar were not subjected to any access control. An attacker with access to FilePathunzip or FilePathuntar operations is able to read and write arbitrary files on the Jenkins controller file system...

9.1CVSS5.8AI score0.01416EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/12/02 6:37 p.m.3 views

jenkins: FilePath#untar does not check permission to create symbolic links when unarchiving a symbolic link

An incorrect permissions validation vulnerability was found in Jenkins. The FilePathuntar does not check permission to create symbolic links when unarchiving a symbolic link, which may allow an attacker to get read and write access to arbitrary files on the Jenkins controller file system...

9.1CVSS5.8AI score0.01342EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/12/01 12:28 p.m.6 views

jenkins: FilePath#unzip and FilePath#untar were not subject to any access control

An incorrect access control vulnerability was found in Jenkins. The FilePathunzip and FilePathuntar were not subjected to any access control. An attacker with access to FilePathunzip or FilePathuntar operations is able to read and write arbitrary files on the Jenkins controller file system...

9.1CVSS5.8AI score0.01416EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/11/30 9:11 a.m.4 views

jenkins: FilePath#unzip and FilePath#untar were not subject to any access control

An incorrect access control vulnerability was found in Jenkins. The FilePathunzip and FilePathuntar were not subjected to any access control. An attacker with access to FilePathunzip or FilePathuntar operations is able to read and write arbitrary files on the Jenkins controller file system...

9.1CVSS5.8AI score0.01416EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/11/29 10:40 a.m.4 views

jenkins: FilePath#unzip and FilePath#untar were not subject to any access control

An incorrect access control vulnerability was found in Jenkins. The FilePathunzip and FilePathuntar were not subjected to any access control. An attacker with access to FilePathunzip or FilePathuntar operations is able to read and write arbitrary files on the Jenkins controller file system...

9.1CVSS5.8AI score0.01416EPSS
Exploits0References5
Rows per page
Query Builder