CVE: CVE-2018-1999038

Descrizione: A confused deputy vulnerability exists in Jenkins Publisher Over CIFS Plugin 0.10 and earlier in CifsPublisherPluginDescriptor.java that allows attackers to have Jenkins connect to an attacker specified CIFS server with attacker specified credentials.

Vettore di attacco

Riferimenti esterni

• https://jenkins.io/security/advisory/2018-07-30/#SECURITY-975

Prodotti interessati

• n/a – n/a

Relazioni con altri prodotti

Nessun prodotto trovato per il CVE: cve-2018-1999038