Kwetsbaarheid CVE-2018-1000421

An Improper Authorization Vulnerability Exists In Jenkins Mesos Plugin 0.17.1 And Earlier In MesosCloud.java That Allows Attackers With Overall/Read Access To Initiate A Test Connection To An Attacker-specified Mesos Server With Attacker-specified Credentials IDs Obtained Through Another Method, Capturing Credentials Stored In Jenkins.

Algemeen

CVE
CVE-2018-1000421
Leverancier(s) betrokken
Omschrijving
An Improper Authorization Vulnerability Exists In Jenkins Mesos Plugin 0.17.1 And Earlier In MesosCloud.java That Allows Attackers With Overall/Read Access To Initiate A Test Connection To An Attacker-specified Mesos Server With Attacker-specified Credentials IDs Obtained Through Another Method, Capturing Credentials Stored In Jenkins.
Publicatie
Woensdag, 9 Januari 2019
Gewijzigd
Maandag, 14 Januari 2019 15:00
Ernst

Referenties

Modificatie geschiedenis

Geef hieronder je email adres op en word op de hoogte gehouden van aanpassingen aan deze CVE