Back to search
CVE-2017-1000089
Published: Oct 4, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Builds in Jenkins are associated with an authentication that controls the permissions that the build has to interact with other elements in Jenkins. The Pipeline: Build Step Plugin did not check the build authentication it was running as and allowed triggering any other project in Jenkins.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://jenkins.io/security/advisory/2017-07-10/
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now