Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2018-1000169 - Vulnerability Database
Jenkins

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2018-1000169

Medium
Reference: CVE-2018-1000169
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-1000169
Title: Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

An exposure of sensitive information vulnerability exists in Jenkins 2.115 and older LTS 2.107.1 and older in CLICommand.java and ViewOptionHandler.java that allows unauthorized attackers to confirm the existence of agents or views with an attacker-specified name by sending a CLI command to Jenkins.