CVE-2019-10305 is a vulnerability in Jenkins Xebialabs Xl Deploy
Published on April 18, 2019

A missing permission check in Jenkins XebiaLabs XL Deploy Plugin in the Credential#doValidateUserNamePassword form validation method allows attackers with Overall/Read permission to initiate a connection to an attacker-specified server.

NVD

Products Associated with CVE-2019-10305

Want to know whenever a new CVE is published for Jenkins Xebialabs Xl Deploy? stack.watch will email you.

Jenkins Xebialabs Xl Deploy

Affected Versions

Jenkins project Jenkins XebiaLabs XL Deploy Plugin Version all versions as of 2019-04-17 is affected by CVE-2019-10305

Exploit Probability

EPSS

0.03%

Percentile

8.27%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-10305 is a vulnerability in Jenkins Xebialabs Xl DeployPublished on April 18, 2019

Products Associated with CVE-2019-10305

Affected Versions

Exploit Probability

CVE-2019-10305 is a vulnerability in Jenkins Xebialabs Xl Deploy
Published on April 18, 2019