CVE-2019-10320 is a vulnerability in Jenkins Credentials
Published on May 21, 2019
Jenkins Credentials Plugin 2.1.18 and earlier allowed users with permission to create or update credentials to confirm the existence of files on the Jenkins master with an attacker-specified path, and obtain the certificate content of files containing a PKCS#12 certificate.
Products Associated with CVE-2019-10320
Want to know whenever a new CVE is published for Jenkins Credentials? stack.watch will email you.
Affected Versions
Jenkins project Jenkins Credentials Plugin Version 2.1.18 and earlier is affected by CVE-2019-10320Exploit Probability
EPSS
0.12%
Percentile
30.29%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.