CVE-2019-10442 is a vulnerability in Jenkins Icescrum
Published on October 16, 2019

A missing permission check in Jenkins iceScrum Plugin 1.1.5 and earlier allowed attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials.

NVD

Products Associated with CVE-2019-10442

Want to know whenever a new CVE is published for Jenkins Icescrum? stack.watch will email you.

Jenkins Icescrum

Affected Versions

Jenkins project Jenkins iceScrum Plugin Version 1.1.5 and earlier is affected by CVE-2019-10442

Exploit Probability

EPSS

0.03%

Percentile

8.62%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-10442 is a vulnerability in Jenkins IcescrumPublished on October 16, 2019

Products Associated with CVE-2019-10442

Affected Versions

Exploit Probability

CVE-2019-10442 is a vulnerability in Jenkins Icescrum
Published on October 16, 2019