Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A missing permission check in Jenkins Deploy WebLogic Plugin allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials, or determine whether a file or directory with an attacker-specified path exists on the Jenkins master file system.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CloudBees Jenkins Deploy WebLogic Plugin 安全漏洞
Vulnerability Description
CloudBees Jenkins(Hudson Labs)是美国CloudBees公司的一套基于Java开发的持续集成工具。该产品主要用于监控持续的软件版本发布/测试项目和一些定时执行的任务。Deploy WebLogic Plugin是使用在其中的一个WebLogic应用程序部署插件。 CloudBees Jenkins Deploy WebLogic Plugin中存在安全漏洞,该漏洞源于程序缺少权限检查。攻击者可利用该漏洞连接到其指定的URL或确定Jenkins master文件系统上所存在的文件
CVSS Information
N/A
Vulnerability Type
N/A