CVE-2020-2287 is a vulnerability in Jenkins Audit Trail
Published on October 8, 2020
Jenkins Audit Trail Plugin 3.6 and earlier applies pattern matching to a different representation of request URL paths than the Stapler web framework uses for dispatching requests, which allows attackers to craft URLs that bypass request logging of any target URL.
Products Associated with CVE-2020-2287
Want to know whenever a new CVE is published for Jenkins Audit Trail? stack.watch will email you.
Affected Versions
Jenkins project Jenkins Audit Trail Plugin:- Version unspecified, <= 3.6 is affected.
Exploit Probability
EPSS
0.07%
Percentile
20.28%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.