Jenkins Improper Input Validation Vulnerability - CVE-2018-1000068 - Vulnerability Database

Jenkins Improper Input Validation Vulnerability - CVE-2018-1000068

Medium

Reference: CVE-2018-1000068

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-1000068

Title: Jenkins Improper Input Validation Vulnerability

Overview:

An improper input validation vulnerability exists in Jenkins versions 2.106 and earlier and LTS 2.89.3 and earlier that allows an attacker to access plugin resource files in the META-INF and WEB-INF directories that should not be accessible if the Jenkins home directory is on a case-insensitive file system.