DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-43045

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-43045

CGA ID

CGA-j4mp-f264-hfmr

Severity

6.3

Medium

CVSS V3

Description

Jenkins 2.470 and earlier, LTS 2.452.3 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to access other users' "My Views".

References

  • https://images.chainguard.dev/security/CGA-j4mp-f264-hfmr

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images