CVE-2019-10357 in Jenkins and Red Hat Products
Published on July 31, 2019

A missing permission check in Jenkins Pipeline: Shared Groovy Libraries Plugin 2.14 and earlier allowed users with Overall/Read access to obtain limited information about the content of SCM repositories referenced by global libraries.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2019-10357

stack.watch emails you whenever new vulnerabilities are published in Jenkins Pipeline or Red Hat Openshift Container Platform. Just hit a watch button to start following.

Jenkins Pipeline

Red Hat Openshift Container Platform

Affected Versions

Jenkins project Jenkins Pipeline: Shared Groovy Libraries Plugin Version 2.14 and earlier is affected by CVE-2019-10357

Exploit Probability

EPSS

0.06%

Percentile

19.78%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-10357 in Jenkins and Red Hat ProductsPublished on July 31, 2019

Products Associated with CVE-2019-10357

Affected Versions

Exploit Probability

CVE-2019-10357 in Jenkins and Red Hat Products
Published on July 31, 2019