Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Jenkins 2.286 and earlier, LTS 2.277.1 and earlier does not validate the type of object created after loading the data submitted to the `config.xml` REST API endpoint of a node, allowing attackers with Computer/Configure permission to replace a node with one of a different type.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jenkins 输入验证错误漏洞
Vulnerability Description
Jenkins是Jenkins开源的一个应用软件。一个开源自动化服务器Jenkins提供了数百个插件来支持构建,部署和自动化任何项目。 Jenkins 2.286版本及之前版本, LTS 2.277.1版本及之前版本存在安全漏洞,该漏洞允许具有计算机配置权限的攻击者可用不同类型的节点替换一个节点。
CVSS Information
N/A
Vulnerability Type
N/A