CVE-2024-28151 in HTML Publisher Plugin情報

要約

〜によって MITRE • 2024年03月06日

Jenkins HTML Publisher Plugin 1.32 and earlier archives invalid symbolic links in report directories on agents and recreates them on the controller, allowing attackers with Item/Configure permission to determine whether a path on the Jenkins controller file system exists, without being able to access it.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

予約する

2024年03月05日

モデレーション

承諾済み

エントリ

VDB-255911

EPSS

0.00939

アクティビティ

非常低い

ソース

Do you need the next level of professionalism?

Upgrade your account now!