Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2018-1000862 - Vulnerability Database
Jenkins

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2018-1000862

Medium
Reference: CVE-2018-1000862
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-1000862
Title: Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

An information exposure vulnerability exists in Jenkins 2.153 and earlier LTS 2.138.3 and earlier in DirectoryBrowserSupport.java that allows attackers with the ability to control build output to browse the file system on agents running builds beyond the duration of the build using the workspace browser.