CVE-2019-10344 is a vulnerability in Jenkins Configuration As Code
Published on July 31, 2019

Missing permission checks in Jenkins Configuration as Code Plugin 1.24 and earlier in various HTTP endpoints allowed users with Overall/Read access to access the generated schema and documentation for this plugin containing detailed information about installed plugins.

NVD

Products Associated with CVE-2019-10344

Want to know whenever a new CVE is published for Jenkins Configuration As Code? stack.watch will email you.

Jenkins Configuration As Code

Affected Versions

Jenkins project Jenkins Configuration as Code Plugin Version 1.24 and earlier is affected by CVE-2019-10344

Exploit Probability

EPSS

0.03%

Percentile

8.62%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-10344 is a vulnerability in Jenkins Configuration As CodePublished on July 31, 2019

Products Associated with CVE-2019-10344

Affected Versions

Exploit Probability

CVE-2019-10344 is a vulnerability in Jenkins Configuration As Code
Published on July 31, 2019