Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Jenkins 2.335 through 2.355 (both inclusive) allows attackers in some cases to bypass a protection mechanism, thereby directly accessing some view fragments containing sensitive information, bypassing any permission checks in the corresponding view.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jenkins 安全漏洞
Vulnerability Description
Jenkins是Jenkins开源的一个应用软件。一个开源自动化服务器Jenkins提供了数百个插件来支持构建,部署和自动化任何项目。 Jenkins 2.335 到 2.355版本存在安全漏洞,该漏洞源于视图中的权限检查缺少有效保护机制。攻击者利用该漏洞可以访问一些包含敏感信息的视图片段。
CVSS Information
N/A
Vulnerability Type
N/A