Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
GitHub Branch Source provides a list of applicable credential IDs to allow users configuring a job to select the one they'd like to use. This functionality did not check permissions, allowing any user with Overall/Read permission to get a list of valid credentials IDs. Those could be used as part of an attack to capture the credentials using another vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CloudBees GitHub Branch Source插件安全漏洞
Vulnerability Description
CloudBees GitHub Branch Source plugin是美国CloudBees公司的Jenkins(基于Java开发的持续集成工具)中的一个GitHub分支插件。 CloudBees GitHub Branch Source插件存在安全漏洞,该漏洞源于程序没有检测权限。攻击者可利用该漏洞枚举证书ID。
CVSS Information
N/A
Vulnerability Type
N/A