The API URL computer/(master)/api/xml in Jenkins prior to 2.3 and LTS prior to 1.651.2 allows remote authenticated users with extended read permission for the master node to obtain sensitive information about the global configuration via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins jenkins |
||
redhat openshift 3.2 |
||
redhat openshift 3.1 |