Jenkins Incorrect Permission Assignment for Critical Resource Vulnerability - CVE-2017-2612 - Vulnerability Database

Jenkins Incorrect Permission Assignment for Critical Resource Vulnerability - CVE-2017-2612

Medium
Reference: CVE-2017-2612
Title: Jenkins Incorrect Permission Assignment for Critical Resource Vulnerability
Overview:

In Jenkins before versions 2.44 2.32.2 low privilege users were able to override JDK download credentials (SECURITY-392) resulting in future builds possibly failing to download a JDK.