An improper authorization vulnerability exists in Jenkins Mercurial Plugin version 2.2 and previous versions in MercurialStatus.java that allows an attacker with network access to obtain a list of nodes and users.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenkins mercurial |