CVE-2018-1000421
CVE-2018-1000421 affects Jenkins Mesos Plugin up to version 0.17.1. The root cause is an improper authorization in MesosCloud.java that allows attackers with Overall/Read access to initiate a test connection to a attacker-specified Mesos server using attacker-specified credentials IDs, enabling e...